├── .mvn └── wrapper │ ├── maven-wrapper.jar │ ├── maven-wrapper.properties │ └── MavenWrapperDownloader.java ├── bin ├── .mvn │ └── wrapper │ │ ├── maven-wrapper.jar │ │ ├── MavenWrapperDownloader.class │ │ └── maven-wrapper.properties ├── spring-boot-refresh-token-jwt-example-flow.png ├── spring-boot-jwt-authentication-spring-security-flow.png ├── src │ ├── main │ │ ├── java │ │ │ └── com │ │ │ │ └── bezkoder │ │ │ │ └── springjwt │ │ │ │ ├── models │ │ │ │ ├── ERole.class │ │ │ │ ├── Role.class │ │ │ │ └── User.class │ │ │ │ ├── security │ │ │ │ ├── jwt │ │ │ │ │ ├── JwtUtils.class │ │ │ │ │ ├── AuthTokenFilter.class │ │ │ │ │ └── AuthEntryPointJwt.class │ │ │ │ ├── WebSecurityConfig.class │ │ │ │ └── services │ │ │ │ │ ├── UserDetailsImpl.class │ │ │ │ │ └── UserDetailsServiceImpl.class │ │ │ │ ├── controllers │ │ │ │ ├── AuthController.class │ │ │ │ ├── TestController.class │ │ │ │ └── UserController.class │ │ │ │ ├── repository │ │ │ │ ├── RoleRepository.class │ │ │ │ └── UserRepository.class │ │ │ │ ├── payload │ │ │ │ ├── request │ │ │ │ │ ├── LoginRequest.class │ │ │ │ │ └── SignupRequest.class │ │ │ │ └── response │ │ │ │ │ ├── JwtResponse.class │ │ │ │ │ └── MessageResponse.class │ │ │ │ └── SpringBootSecurityJwtApplication.class │ │ └── resources │ │ │ └── application.properties │ └── test │ │ └── java │ │ └── com │ │ └── bezkoder │ │ └── springjwt │ │ └── SpringBootSecurityJwtApplicationTests.class ├── spring-boot-jwt-authentication-spring-security-architecture.png ├── .gitignore ├── pom.xml ├── mvnw.cmd ├── README.md └── mvnw ├── spring-boot-refresh-token-jwt-example-flow.png ├── spring-boot-jwt-authentication-spring-security-flow.png ├── src ├── main │ ├── java │ │ └── com │ │ │ └── backend │ │ │ └── springjwt │ │ │ ├── models │ │ │ ├── ERole.java │ │ │ ├── Role.java │ │ │ └── User.java │ │ │ ├── payload │ │ │ ├── response │ │ │ │ ├── MessageResponse.java │ │ │ │ └── JwtResponse.java │ │ │ └── request │ │ │ │ ├── LoginRequest.java │ │ │ │ └── SignupRequest.java │ │ │ ├── SpringBootSecurityJwtApplication.java │ │ │ ├── repository │ │ │ ├── RoleRepository.java │ │ │ └── UserRepository.java │ │ │ ├── controllers │ │ │ ├── TestController.java │ │ │ ├── UserController.java │ │ │ └── AuthController.java │ │ │ └── security │ │ │ ├── services │ │ │ ├── UserDetailsServiceImpl.java │ │ │ └── UserDetailsImpl.java │ │ │ ├── jwt │ │ │ ├── AuthEntryPointJwt.java │ │ │ ├── JwtUtils.java │ │ │ └── AuthTokenFilter.java │ │ │ └── WebSecurityConfig.java │ └── resources │ │ └── application.properties └── test │ └── java │ └── com │ └── bezkoder │ └── springjwt │ └── SpringBootSecurityJwtApplicationTests.java ├── spring-boot-jwt-authentication-spring-security-architecture.png ├── .gitignore ├── README.md ├── pom.xml ├── spring Security.postman_collection.json ├── mvnw.cmd └── mvnw /.mvn/wrapper/maven-wrapper.jar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/MohamedDerbali/SpringSecurity/HEAD/.mvn/wrapper/maven-wrapper.jar -------------------------------------------------------------------------------- /bin/.mvn/wrapper/maven-wrapper.jar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/MohamedDerbali/SpringSecurity/HEAD/bin/.mvn/wrapper/maven-wrapper.jar -------------------------------------------------------------------------------- /.mvn/wrapper/maven-wrapper.properties: -------------------------------------------------------------------------------- 1 | distributionUrl=https://repo.maven.apache.org/maven2/org/apache/maven/apache-maven/3.6.0/apache-maven-3.6.0-bin.zip 2 | -------------------------------------------------------------------------------- /bin/.mvn/wrapper/MavenWrapperDownloader.class: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/MohamedDerbali/SpringSecurity/HEAD/bin/.mvn/wrapper/MavenWrapperDownloader.class -------------------------------------------------------------------------------- /spring-boot-refresh-token-jwt-example-flow.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/MohamedDerbali/SpringSecurity/HEAD/spring-boot-refresh-token-jwt-example-flow.png -------------------------------------------------------------------------------- /bin/.mvn/wrapper/maven-wrapper.properties: -------------------------------------------------------------------------------- 1 | distributionUrl=https://repo.maven.apache.org/maven2/org/apache/maven/apache-maven/3.6.0/apache-maven-3.6.0-bin.zip 2 | -------------------------------------------------------------------------------- /bin/spring-boot-refresh-token-jwt-example-flow.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/MohamedDerbali/SpringSecurity/HEAD/bin/spring-boot-refresh-token-jwt-example-flow.png -------------------------------------------------------------------------------- /spring-boot-jwt-authentication-spring-security-flow.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/MohamedDerbali/SpringSecurity/HEAD/spring-boot-jwt-authentication-spring-security-flow.png -------------------------------------------------------------------------------- /bin/spring-boot-jwt-authentication-spring-security-flow.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/MohamedDerbali/SpringSecurity/HEAD/bin/spring-boot-jwt-authentication-spring-security-flow.png -------------------------------------------------------------------------------- /bin/src/main/java/com/bezkoder/springjwt/models/ERole.class: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/MohamedDerbali/SpringSecurity/HEAD/bin/src/main/java/com/bezkoder/springjwt/models/ERole.class -------------------------------------------------------------------------------- /bin/src/main/java/com/bezkoder/springjwt/models/Role.class: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/MohamedDerbali/SpringSecurity/HEAD/bin/src/main/java/com/bezkoder/springjwt/models/Role.class -------------------------------------------------------------------------------- /bin/src/main/java/com/bezkoder/springjwt/models/User.class: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/MohamedDerbali/SpringSecurity/HEAD/bin/src/main/java/com/bezkoder/springjwt/models/User.class -------------------------------------------------------------------------------- /src/main/java/com/backend/springjwt/models/ERole.java: -------------------------------------------------------------------------------- 1 | package com.backend.springjwt.models; 2 | 3 | public enum ERole { 4 | ROLE_USER, 5 | ROLE_MODERATOR, 6 | ROLE_ADMIN 7 | } 8 | -------------------------------------------------------------------------------- /spring-boot-jwt-authentication-spring-security-architecture.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/MohamedDerbali/SpringSecurity/HEAD/spring-boot-jwt-authentication-spring-security-architecture.png -------------------------------------------------------------------------------- /bin/spring-boot-jwt-authentication-spring-security-architecture.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/MohamedDerbali/SpringSecurity/HEAD/bin/spring-boot-jwt-authentication-spring-security-architecture.png -------------------------------------------------------------------------------- /bin/src/main/java/com/bezkoder/springjwt/security/jwt/JwtUtils.class: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/MohamedDerbali/SpringSecurity/HEAD/bin/src/main/java/com/bezkoder/springjwt/security/jwt/JwtUtils.class -------------------------------------------------------------------------------- /bin/src/main/java/com/bezkoder/springjwt/controllers/AuthController.class: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/MohamedDerbali/SpringSecurity/HEAD/bin/src/main/java/com/bezkoder/springjwt/controllers/AuthController.class -------------------------------------------------------------------------------- /bin/src/main/java/com/bezkoder/springjwt/controllers/TestController.class: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/MohamedDerbali/SpringSecurity/HEAD/bin/src/main/java/com/bezkoder/springjwt/controllers/TestController.class -------------------------------------------------------------------------------- /bin/src/main/java/com/bezkoder/springjwt/controllers/UserController.class: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/MohamedDerbali/SpringSecurity/HEAD/bin/src/main/java/com/bezkoder/springjwt/controllers/UserController.class -------------------------------------------------------------------------------- /bin/src/main/java/com/bezkoder/springjwt/repository/RoleRepository.class: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/MohamedDerbali/SpringSecurity/HEAD/bin/src/main/java/com/bezkoder/springjwt/repository/RoleRepository.class -------------------------------------------------------------------------------- /bin/src/main/java/com/bezkoder/springjwt/repository/UserRepository.class: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/MohamedDerbali/SpringSecurity/HEAD/bin/src/main/java/com/bezkoder/springjwt/repository/UserRepository.class -------------------------------------------------------------------------------- /bin/src/main/java/com/bezkoder/springjwt/security/WebSecurityConfig.class: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/MohamedDerbali/SpringSecurity/HEAD/bin/src/main/java/com/bezkoder/springjwt/security/WebSecurityConfig.class -------------------------------------------------------------------------------- /bin/src/main/java/com/bezkoder/springjwt/payload/request/LoginRequest.class: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/MohamedDerbali/SpringSecurity/HEAD/bin/src/main/java/com/bezkoder/springjwt/payload/request/LoginRequest.class -------------------------------------------------------------------------------- /bin/src/main/java/com/bezkoder/springjwt/payload/request/SignupRequest.class: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/MohamedDerbali/SpringSecurity/HEAD/bin/src/main/java/com/bezkoder/springjwt/payload/request/SignupRequest.class -------------------------------------------------------------------------------- /bin/src/main/java/com/bezkoder/springjwt/payload/response/JwtResponse.class: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/MohamedDerbali/SpringSecurity/HEAD/bin/src/main/java/com/bezkoder/springjwt/payload/response/JwtResponse.class -------------------------------------------------------------------------------- /bin/src/main/java/com/bezkoder/springjwt/security/jwt/AuthTokenFilter.class: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/MohamedDerbali/SpringSecurity/HEAD/bin/src/main/java/com/bezkoder/springjwt/security/jwt/AuthTokenFilter.class -------------------------------------------------------------------------------- /bin/src/main/java/com/bezkoder/springjwt/SpringBootSecurityJwtApplication.class: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/MohamedDerbali/SpringSecurity/HEAD/bin/src/main/java/com/bezkoder/springjwt/SpringBootSecurityJwtApplication.class -------------------------------------------------------------------------------- /bin/src/main/java/com/bezkoder/springjwt/payload/response/MessageResponse.class: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/MohamedDerbali/SpringSecurity/HEAD/bin/src/main/java/com/bezkoder/springjwt/payload/response/MessageResponse.class -------------------------------------------------------------------------------- /bin/src/main/java/com/bezkoder/springjwt/security/jwt/AuthEntryPointJwt.class: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/MohamedDerbali/SpringSecurity/HEAD/bin/src/main/java/com/bezkoder/springjwt/security/jwt/AuthEntryPointJwt.class -------------------------------------------------------------------------------- /bin/src/main/java/com/bezkoder/springjwt/security/services/UserDetailsImpl.class: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/MohamedDerbali/SpringSecurity/HEAD/bin/src/main/java/com/bezkoder/springjwt/security/services/UserDetailsImpl.class -------------------------------------------------------------------------------- /bin/src/test/java/com/bezkoder/springjwt/SpringBootSecurityJwtApplicationTests.class: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/MohamedDerbali/SpringSecurity/HEAD/bin/src/test/java/com/bezkoder/springjwt/SpringBootSecurityJwtApplicationTests.class -------------------------------------------------------------------------------- /bin/src/main/java/com/bezkoder/springjwt/security/services/UserDetailsServiceImpl.class: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/MohamedDerbali/SpringSecurity/HEAD/bin/src/main/java/com/bezkoder/springjwt/security/services/UserDetailsServiceImpl.class -------------------------------------------------------------------------------- /src/test/java/com/bezkoder/springjwt/SpringBootSecurityJwtApplicationTests.java: -------------------------------------------------------------------------------- 1 | package com.bezkoder.springjwt; 2 | 3 | import org.junit.jupiter.api.Test; 4 | import org.springframework.boot.test.context.SpringBootTest; 5 | 6 | @SpringBootTest 7 | public class SpringBootSecurityJwtApplicationTests { 8 | 9 | @Test 10 | public void contextLoads() { 11 | } 12 | 13 | } 14 | -------------------------------------------------------------------------------- /src/main/java/com/backend/springjwt/payload/response/MessageResponse.java: -------------------------------------------------------------------------------- 1 | package com.backend.springjwt.payload.response; 2 | 3 | public class MessageResponse { 4 | private String message; 5 | 6 | public MessageResponse(String message) { 7 | this.message = message; 8 | } 9 | 10 | public String getMessage() { 11 | return message; 12 | } 13 | 14 | public void setMessage(String message) { 15 | this.message = message; 16 | } 17 | } 18 | -------------------------------------------------------------------------------- /src/main/java/com/backend/springjwt/SpringBootSecurityJwtApplication.java: -------------------------------------------------------------------------------- 1 | package com.backend.springjwt; 2 | 3 | import org.springframework.boot.SpringApplication; 4 | import org.springframework.boot.autoconfigure.SpringBootApplication; 5 | 6 | @SpringBootApplication 7 | public class SpringBootSecurityJwtApplication { 8 | 9 | public static void main(String[] args) { 10 | SpringApplication.run(SpringBootSecurityJwtApplication.class, args); 11 | } 12 | 13 | } 14 | -------------------------------------------------------------------------------- /src/main/resources/application.properties: -------------------------------------------------------------------------------- 1 | spring.datasource.url= jdbc:mysql://localhost:3306/testdb?useSSL=false 2 | spring.datasource.username= root 3 | spring.datasource.password= 4 | 5 | spring.jpa.properties.hibernate.dialect= org.hibernate.dialect.MySQL5InnoDBDialect 6 | spring.jpa.hibernate.ddl-auto= update 7 | spring.jpa.show-sql=true 8 | server.port=8081 9 | # App Properties 10 | backend.app.jwtSecret= bezKoderSecretKey 11 | backend.app.jwtExpirationMs= 86400000 -------------------------------------------------------------------------------- /bin/src/main/resources/application.properties: -------------------------------------------------------------------------------- 1 | spring.datasource.url= jdbc:mysql://localhost:3306/testdb?useSSL=false 2 | spring.datasource.username= root 3 | spring.datasource.password= 4 | 5 | spring.jpa.properties.hibernate.dialect= org.hibernate.dialect.MySQL5InnoDBDialect 6 | spring.jpa.hibernate.ddl-auto= update 7 | spring.jpa.show-sql=true 8 | server.port=8081 9 | # App Properties 10 | bezkoder.app.jwtSecret= bezKoderSecretKey 11 | bezkoder.app.jwtExpirationMs= 86400000 -------------------------------------------------------------------------------- /.gitignore: -------------------------------------------------------------------------------- 1 | HELP.md 2 | target/ 3 | !.mvn/wrapper/maven-wrapper.jar 4 | !**/src/main/** 5 | !**/src/test/** 6 | 7 | ### STS ### 8 | .apt_generated 9 | .classpath 10 | .factorypath 11 | .project 12 | .settings 13 | .springBeans 14 | .sts4-cache 15 | 16 | ### IntelliJ IDEA ### 17 | .idea 18 | *.iws 19 | *.iml 20 | *.ipr 21 | 22 | ### NetBeans ### 23 | /nbproject/private/ 24 | /nbbuild/ 25 | /dist/ 26 | /nbdist/ 27 | /.nb-gradle/ 28 | build/ 29 | 30 | ### VS Code ### 31 | .vscode/ 32 | -------------------------------------------------------------------------------- /bin/.gitignore: -------------------------------------------------------------------------------- 1 | HELP.md 2 | target/ 3 | !.mvn/wrapper/maven-wrapper.jar 4 | !**/src/main/** 5 | !**/src/test/** 6 | 7 | ### STS ### 8 | .apt_generated 9 | .classpath 10 | .factorypath 11 | .project 12 | .settings 13 | .springBeans 14 | .sts4-cache 15 | 16 | ### IntelliJ IDEA ### 17 | .idea 18 | *.iws 19 | *.iml 20 | *.ipr 21 | 22 | ### NetBeans ### 23 | /nbproject/private/ 24 | /nbbuild/ 25 | /dist/ 26 | /nbdist/ 27 | /.nb-gradle/ 28 | build/ 29 | 30 | ### VS Code ### 31 | .vscode/ 32 | -------------------------------------------------------------------------------- /src/main/java/com/backend/springjwt/repository/RoleRepository.java: -------------------------------------------------------------------------------- 1 | package com.backend.springjwt.repository; 2 | 3 | import java.util.Optional; 4 | 5 | import org.springframework.data.jpa.repository.JpaRepository; 6 | import org.springframework.stereotype.Repository; 7 | 8 | import com.backend.springjwt.models.ERole; 9 | import com.backend.springjwt.models.Role; 10 | 11 | @Repository 12 | public interface RoleRepository extends JpaRepository { 13 | Optional findByName(ERole name); 14 | } 15 | -------------------------------------------------------------------------------- /src/main/java/com/backend/springjwt/repository/UserRepository.java: -------------------------------------------------------------------------------- 1 | package com.backend.springjwt.repository; 2 | 3 | import java.util.Optional; 4 | 5 | import org.springframework.data.jpa.repository.JpaRepository; 6 | import org.springframework.stereotype.Repository; 7 | 8 | import com.backend.springjwt.models.User; 9 | 10 | @Repository 11 | public interface UserRepository extends JpaRepository { 12 | Optional findByUsername(String username); 13 | 14 | Boolean existsByUsername(String username); 15 | 16 | Boolean existsByEmail(String email); 17 | } 18 | -------------------------------------------------------------------------------- /src/main/java/com/backend/springjwt/payload/request/LoginRequest.java: -------------------------------------------------------------------------------- 1 | package com.backend.springjwt.payload.request; 2 | 3 | import javax.validation.constraints.NotBlank; 4 | 5 | public class LoginRequest { 6 | @NotBlank 7 | private String username; 8 | 9 | @NotBlank 10 | private String password; 11 | 12 | public String getUsername() { 13 | return username; 14 | } 15 | 16 | public void setUsername(String username) { 17 | this.username = username; 18 | } 19 | 20 | public String getPassword() { 21 | return password; 22 | } 23 | 24 | public void setPassword(String password) { 25 | this.password = password; 26 | } 27 | } 28 | -------------------------------------------------------------------------------- /README.md: -------------------------------------------------------------------------------- 1 |

2 | Nest Logo 3 |

4 | 5 | Requests: 6 | 7 | # POST [Create Account] 8 | 9 | http://localhost:8081/api/auth/signup 10 | { 11 | "username":"mohamed", 12 | "email":"mohamed.derbali@esprit.tn", 13 | "password":"12345678", 14 | "role":[ 15 | "mod","user" 16 | ] 17 | } 18 | # POST [Login] 19 | 20 | http://localhost:8081/api/auth/signin 21 | { 22 | "username":"mohamed", 23 | "password":"12345678" 24 | } 25 | 26 | # GET [User From Token] 27 | http://localhost:8081/api/user/profile 28 | -------------------------------------------------------------------------------- /src/main/java/com/backend/springjwt/models/Role.java: -------------------------------------------------------------------------------- 1 | package com.backend.springjwt.models; 2 | 3 | import javax.persistence.*; 4 | 5 | @Entity 6 | @Table(name = "roles") 7 | public class Role { 8 | @Id 9 | @GeneratedValue(strategy = GenerationType.IDENTITY) 10 | private Integer id; 11 | 12 | @Enumerated(EnumType.STRING) 13 | @Column(length = 20) 14 | private ERole name; 15 | 16 | public Role() { 17 | 18 | } 19 | 20 | public Role(ERole name) { 21 | this.name = name; 22 | } 23 | 24 | public Integer getId() { 25 | return id; 26 | } 27 | 28 | public void setId(Integer id) { 29 | this.id = id; 30 | } 31 | 32 | public ERole getName() { 33 | return name; 34 | } 35 | 36 | public void setName(ERole name) { 37 | this.name = name; 38 | } 39 | } -------------------------------------------------------------------------------- /src/main/java/com/backend/springjwt/controllers/TestController.java: -------------------------------------------------------------------------------- 1 | package com.backend.springjwt.controllers; 2 | 3 | import org.springframework.security.access.prepost.PreAuthorize; 4 | import org.springframework.web.bind.annotation.CrossOrigin; 5 | import org.springframework.web.bind.annotation.GetMapping; 6 | import org.springframework.web.bind.annotation.RequestMapping; 7 | import org.springframework.web.bind.annotation.RestController; 8 | 9 | @CrossOrigin(origins = "*", maxAge = 3600) 10 | @RestController 11 | @RequestMapping("/api/test") 12 | public class TestController { 13 | @GetMapping("/all") 14 | public String allAccess() { 15 | return "Public Content."; 16 | } 17 | 18 | @GetMapping("/user") 19 | @PreAuthorize("hasRole('USER') or hasRole('MODERATOR') or hasRole('ADMIN')") 20 | public String userAccess() { 21 | return "User Content."; 22 | } 23 | 24 | @GetMapping("/mod") 25 | @PreAuthorize("hasRole('MODERATOR')") 26 | public String moderatorAccess() { 27 | return "Moderator Board."; 28 | } 29 | 30 | @GetMapping("/admin") 31 | @PreAuthorize("hasRole('ADMIN')") 32 | public String adminAccess() { 33 | return "Admin Board."; 34 | } 35 | } 36 | -------------------------------------------------------------------------------- /src/main/java/com/backend/springjwt/payload/request/SignupRequest.java: -------------------------------------------------------------------------------- 1 | package com.backend.springjwt.payload.request; 2 | 3 | import java.util.Set; 4 | 5 | import javax.validation.constraints.*; 6 | 7 | public class SignupRequest { 8 | @NotBlank 9 | @Size(min = 3, max = 20) 10 | private String username; 11 | 12 | @NotBlank 13 | @Size(max = 50) 14 | @Email 15 | private String email; 16 | 17 | private Set role; 18 | 19 | @NotBlank 20 | @Size(min = 6, max = 40) 21 | private String password; 22 | 23 | public String getUsername() { 24 | return username; 25 | } 26 | 27 | public void setUsername(String username) { 28 | this.username = username; 29 | } 30 | 31 | public String getEmail() { 32 | return email; 33 | } 34 | 35 | public void setEmail(String email) { 36 | this.email = email; 37 | } 38 | 39 | public String getPassword() { 40 | return password; 41 | } 42 | 43 | public void setPassword(String password) { 44 | this.password = password; 45 | } 46 | 47 | public Set getRole() { 48 | return this.role; 49 | } 50 | 51 | public void setRole(Set role) { 52 | this.role = role; 53 | } 54 | } 55 | -------------------------------------------------------------------------------- /src/main/java/com/backend/springjwt/security/services/UserDetailsServiceImpl.java: -------------------------------------------------------------------------------- 1 | package com.backend.springjwt.security.services; 2 | 3 | import org.springframework.beans.factory.annotation.Autowired; 4 | import org.springframework.security.core.userdetails.UserDetails; 5 | import org.springframework.security.core.userdetails.UserDetailsService; 6 | import org.springframework.security.core.userdetails.UsernameNotFoundException; 7 | import org.springframework.stereotype.Service; 8 | import org.springframework.transaction.annotation.Transactional; 9 | 10 | import com.backend.springjwt.models.User; 11 | import com.backend.springjwt.repository.UserRepository; 12 | 13 | @Service 14 | public class UserDetailsServiceImpl implements UserDetailsService { 15 | @Autowired 16 | UserRepository userRepository; 17 | 18 | @Override 19 | @Transactional 20 | public UserDetails loadUserByUsername(String username) throws UsernameNotFoundException { 21 | User user = userRepository.findByUsername(username) 22 | .orElseThrow(() -> new UsernameNotFoundException("User Not Found with username: " + username)); 23 | 24 | return UserDetailsImpl.build(user); 25 | } 26 | public User loadUserInformations(String username) { 27 | return userRepository.findByUsername(username).orElse(null); 28 | } 29 | } 30 | -------------------------------------------------------------------------------- /src/main/java/com/backend/springjwt/controllers/UserController.java: -------------------------------------------------------------------------------- 1 | package com.backend.springjwt.controllers; 2 | 3 | import javax.servlet.http.HttpServletRequest; 4 | 5 | import org.springframework.beans.factory.annotation.Autowired; 6 | import org.springframework.security.access.prepost.PreAuthorize; 7 | import org.springframework.security.core.userdetails.UserDetails; 8 | import org.springframework.web.bind.annotation.CrossOrigin; 9 | import org.springframework.web.bind.annotation.GetMapping; 10 | import org.springframework.web.bind.annotation.RequestMapping; 11 | import org.springframework.web.bind.annotation.RestController; 12 | 13 | import com.backend.springjwt.models.User; 14 | import com.backend.springjwt.security.jwt.AuthTokenFilter; 15 | import com.backend.springjwt.security.jwt.JwtUtils; 16 | import com.backend.springjwt.security.services.UserDetailsServiceImpl; 17 | 18 | @CrossOrigin(origins = "*", maxAge = 3600) 19 | @RestController 20 | @RequestMapping("/api/user") 21 | public class UserController { 22 | @Autowired 23 | JwtUtils jwtParser; 24 | @Autowired 25 | UserDetailsServiceImpl userService; 26 | @Autowired 27 | AuthTokenFilter token; 28 | @GetMapping("/profile") 29 | @PreAuthorize("hasRole('USER') or hasRole('MODERATOR') or hasRole('ADMIN')") 30 | public User userAccess(HttpServletRequest request) { 31 | String data = jwtParser.getUserNameFromJwtToken(token.parseJwt(request)); 32 | System.out.println(data); 33 | return userService.loadUserInformations(data); 34 | } 35 | } 36 | -------------------------------------------------------------------------------- /src/main/java/com/backend/springjwt/payload/response/JwtResponse.java: -------------------------------------------------------------------------------- 1 | package com.backend.springjwt.payload.response; 2 | 3 | import java.util.List; 4 | 5 | public class JwtResponse { 6 | private String token; 7 | private String type = "Bearer"; 8 | private Long id; 9 | private String username; 10 | private String email; 11 | private List roles; 12 | 13 | public JwtResponse(String accessToken, Long id, String username, String email, List roles) { 14 | this.token = accessToken; 15 | this.id = id; 16 | this.username = username; 17 | this.email = email; 18 | this.roles = roles; 19 | } 20 | 21 | public String getAccessToken() { 22 | return token; 23 | } 24 | 25 | public void setAccessToken(String accessToken) { 26 | this.token = accessToken; 27 | } 28 | 29 | public String getTokenType() { 30 | return type; 31 | } 32 | 33 | public void setTokenType(String tokenType) { 34 | this.type = tokenType; 35 | } 36 | 37 | public Long getId() { 38 | return id; 39 | } 40 | 41 | public void setId(Long id) { 42 | this.id = id; 43 | } 44 | 45 | public String getEmail() { 46 | return email; 47 | } 48 | 49 | public void setEmail(String email) { 50 | this.email = email; 51 | } 52 | 53 | public String getUsername() { 54 | return username; 55 | } 56 | 57 | public void setUsername(String username) { 58 | this.username = username; 59 | } 60 | 61 | public List getRoles() { 62 | return roles; 63 | } 64 | } 65 | -------------------------------------------------------------------------------- /src/main/java/com/backend/springjwt/security/jwt/AuthEntryPointJwt.java: -------------------------------------------------------------------------------- 1 | package com.backend.springjwt.security.jwt; 2 | 3 | import java.io.IOException; 4 | import java.util.HashMap; 5 | import java.util.Map; 6 | 7 | import javax.servlet.ServletException; 8 | import javax.servlet.http.HttpServletRequest; 9 | import javax.servlet.http.HttpServletResponse; 10 | 11 | import org.slf4j.Logger; 12 | import org.slf4j.LoggerFactory; 13 | import org.springframework.http.MediaType; 14 | import org.springframework.security.core.AuthenticationException; 15 | import org.springframework.security.web.AuthenticationEntryPoint; 16 | import org.springframework.stereotype.Component; 17 | 18 | import com.fasterxml.jackson.databind.ObjectMapper; 19 | 20 | @Component 21 | public class AuthEntryPointJwt implements AuthenticationEntryPoint { 22 | 23 | private static final Logger logger = LoggerFactory.getLogger(AuthEntryPointJwt.class); 24 | 25 | @Override 26 | public void commence(HttpServletRequest request, HttpServletResponse response, AuthenticationException authException) 27 | throws IOException, ServletException { 28 | logger.error("Unauthorized error: {}", authException.getMessage()); 29 | 30 | response.setContentType(MediaType.APPLICATION_JSON_VALUE); 31 | response.setStatus(HttpServletResponse.SC_UNAUTHORIZED); 32 | 33 | final Map body = new HashMap<>(); 34 | body.put("status", HttpServletResponse.SC_UNAUTHORIZED); 35 | body.put("error", "Unauthorized"); 36 | body.put("message", authException.getMessage()); 37 | body.put("path", request.getServletPath()); 38 | 39 | final ObjectMapper mapper = new ObjectMapper(); 40 | mapper.writeValue(response.getOutputStream(), body); 41 | } 42 | 43 | } 44 | -------------------------------------------------------------------------------- /src/main/java/com/backend/springjwt/models/User.java: -------------------------------------------------------------------------------- 1 | package com.backend.springjwt.models; 2 | 3 | import java.util.HashSet; 4 | import java.util.Set; 5 | 6 | import javax.persistence.*; 7 | import javax.validation.constraints.Email; 8 | import javax.validation.constraints.NotBlank; 9 | import javax.validation.constraints.Size; 10 | 11 | @Entity 12 | @Table(name = "users", 13 | uniqueConstraints = { 14 | @UniqueConstraint(columnNames = "username"), 15 | @UniqueConstraint(columnNames = "email") 16 | }) 17 | public class User { 18 | @Id 19 | @GeneratedValue(strategy = GenerationType.IDENTITY) 20 | private Long id; 21 | 22 | @NotBlank 23 | @Size(max = 20) 24 | private String username; 25 | 26 | @NotBlank 27 | @Size(max = 50) 28 | @Email 29 | private String email; 30 | 31 | @NotBlank 32 | @Size(max = 120) 33 | private String password; 34 | 35 | @ManyToMany(fetch = FetchType.LAZY) 36 | @JoinTable( name = "user_roles", 37 | joinColumns = @JoinColumn(name = "user_id"), 38 | inverseJoinColumns = @JoinColumn(name = "role_id")) 39 | private Set roles = new HashSet<>(); 40 | 41 | public User() { 42 | } 43 | 44 | public User(String username, String email, String password) { 45 | this.username = username; 46 | this.email = email; 47 | this.password = password; 48 | } 49 | 50 | public Long getId() { 51 | return id; 52 | } 53 | 54 | public void setId(Long id) { 55 | this.id = id; 56 | } 57 | 58 | public String getUsername() { 59 | return username; 60 | } 61 | 62 | public void setUsername(String username) { 63 | this.username = username; 64 | } 65 | 66 | public String getEmail() { 67 | return email; 68 | } 69 | 70 | public void setEmail(String email) { 71 | this.email = email; 72 | } 73 | 74 | public String getPassword() { 75 | return password; 76 | } 77 | 78 | public void setPassword(String password) { 79 | this.password = password; 80 | } 81 | 82 | public Set getRoles() { 83 | return roles; 84 | } 85 | 86 | public void setRoles(Set roles) { 87 | this.roles = roles; 88 | } 89 | } 90 | -------------------------------------------------------------------------------- /src/main/java/com/backend/springjwt/security/jwt/JwtUtils.java: -------------------------------------------------------------------------------- 1 | package com.backend.springjwt.security.jwt; 2 | 3 | import java.util.Date; 4 | 5 | import org.slf4j.Logger; 6 | import org.slf4j.LoggerFactory; 7 | import org.springframework.beans.factory.annotation.Value; 8 | import org.springframework.security.core.Authentication; 9 | import org.springframework.stereotype.Component; 10 | 11 | import com.backend.springjwt.security.services.UserDetailsImpl; 12 | 13 | import io.jsonwebtoken.*; 14 | 15 | @Component 16 | public class JwtUtils { 17 | private static final Logger logger = LoggerFactory.getLogger(JwtUtils.class); 18 | 19 | @Value("${backend.app.jwtSecret}") 20 | private String jwtSecret; 21 | 22 | @Value("${backend.app.jwtExpirationMs}") 23 | private int jwtExpirationMs; 24 | 25 | public String generateJwtToken(Authentication authentication) { 26 | 27 | UserDetailsImpl userPrincipal = (UserDetailsImpl) authentication.getPrincipal(); 28 | 29 | return Jwts.builder() 30 | .setSubject((userPrincipal.getUsername())) 31 | .setIssuedAt(new Date()) 32 | .setExpiration(new Date((new Date()).getTime() + jwtExpirationMs)) 33 | .signWith(SignatureAlgorithm.HS512, jwtSecret) 34 | .compact(); 35 | } 36 | 37 | public String getUserNameFromJwtToken(String token) { 38 | return Jwts.parser().setSigningKey(jwtSecret).parseClaimsJws(token).getBody().getSubject(); 39 | } 40 | 41 | public boolean validateJwtToken(String authToken) { 42 | try { 43 | Jwts.parser().setSigningKey(jwtSecret).parseClaimsJws(authToken); 44 | return true; 45 | } catch (SignatureException e) { 46 | logger.error("Invalid JWT signature: {}", e.getMessage()); 47 | } catch (MalformedJwtException e) { 48 | logger.error("Invalid JWT token: {}", e.getMessage()); 49 | } catch (ExpiredJwtException e) { 50 | logger.error("JWT token is expired: {}", e.getMessage()); 51 | } catch (UnsupportedJwtException e) { 52 | logger.error("JWT token is unsupported: {}", e.getMessage()); 53 | } catch (IllegalArgumentException e) { 54 | logger.error("JWT claims string is empty: {}", e.getMessage()); 55 | } 56 | 57 | return false; 58 | } 59 | } 60 | -------------------------------------------------------------------------------- /pom.xml: -------------------------------------------------------------------------------- 1 | 2 | 5 | 4.0.0 6 | 7 | org.springframework.boot 8 | spring-boot-starter-parent 9 | 2.6.1 10 | 11 | 12 | com.bezkoder 13 | spring-boot-security-jwt 14 | 0.0.1-SNAPSHOT 15 | spring-boot-security-jwt 16 | Demo project for Spring Boot Security - JWT 17 | 18 | 19 | 1.8 20 | 21 | 22 | 23 | 24 | org.springframework.boot 25 | spring-boot-starter-data-jpa 26 | 27 | 28 | 29 | org.springframework.boot 30 | spring-boot-starter-security 31 | 32 | 33 | 34 | org.springframework.boot 35 | spring-boot-starter-validation 36 | 37 | 38 | 39 | org.springframework.boot 40 | spring-boot-starter-web 41 | 42 | 43 | 44 | mysql 45 | mysql-connector-java 46 | runtime 47 | 48 | 49 | 50 | io.jsonwebtoken 51 | jjwt 52 | 0.9.1 53 | 54 | 55 | 56 | org.springframework.boot 57 | spring-boot-starter-test 58 | test 59 | 60 | 61 | 62 | org.springframework.security 63 | spring-security-test 64 | test 65 | 66 | 67 | 68 | 69 | 70 | 71 | org.springframework.boot 72 | spring-boot-maven-plugin 73 | 74 | 75 | 76 | 77 | 78 | -------------------------------------------------------------------------------- /bin/pom.xml: -------------------------------------------------------------------------------- 1 | 2 | 5 | 4.0.0 6 | 7 | org.springframework.boot 8 | spring-boot-starter-parent 9 | 2.6.1 10 | 11 | 12 | com.bezkoder 13 | spring-boot-security-jwt 14 | 0.0.1-SNAPSHOT 15 | spring-boot-security-jwt 16 | Demo project for Spring Boot Security - JWT 17 | 18 | 19 | 1.8 20 | 21 | 22 | 23 | 24 | org.springframework.boot 25 | spring-boot-starter-data-jpa 26 | 27 | 28 | 29 | org.springframework.boot 30 | spring-boot-starter-security 31 | 32 | 33 | 34 | org.springframework.boot 35 | spring-boot-starter-validation 36 | 37 | 38 | 39 | org.springframework.boot 40 | spring-boot-starter-web 41 | 42 | 43 | 44 | mysql 45 | mysql-connector-java 46 | runtime 47 | 48 | 49 | 50 | io.jsonwebtoken 51 | jjwt 52 | 0.9.1 53 | 54 | 55 | 56 | org.springframework.boot 57 | spring-boot-starter-test 58 | test 59 | 60 | 61 | 62 | org.springframework.security 63 | spring-security-test 64 | test 65 | 66 | 67 | 68 | 69 | 70 | 71 | org.springframework.boot 72 | spring-boot-maven-plugin 73 | 74 | 75 | 76 | 77 | 78 | -------------------------------------------------------------------------------- /spring Security.postman_collection.json: -------------------------------------------------------------------------------- 1 | { 2 | "info": { 3 | "_postman_id": "c7c92be2-ae7a-419c-a6f6-c5e13e392a35", 4 | "name": "spring Security", 5 | "schema": "https://schema.getpostman.com/json/collection/v2.0.0/collection.json" 6 | }, 7 | "item": [ 8 | { 9 | "name": "signup", 10 | "request": { 11 | "method": "POST", 12 | "header": [], 13 | "body": { 14 | "mode": "raw", 15 | "raw": "{\r\n \"username\":\"mohamed123ss\",\r\n \"email\":\"mohamed.derbali@esprit.tneessm\",\r\n \"password\":\"12345678\",\r\n \"role\":[\r\n \"mod\",\"user\"\r\n ]\r\n}", 16 | "options": { 17 | "raw": { 18 | "language": "json" 19 | } 20 | } 21 | }, 22 | "url": "http://localhost:8081/api/auth/signup" 23 | }, 24 | "response": [] 25 | }, 26 | { 27 | "name": "signin", 28 | "request": { 29 | "method": "POST", 30 | "header": [], 31 | "body": { 32 | "mode": "raw", 33 | "raw": "{\r\n \"username\":\"mohamed\",\r\n \"password\":\"12345678\"\r\n}", 34 | "options": { 35 | "raw": { 36 | "language": "json" 37 | } 38 | } 39 | }, 40 | "url": "http://localhost:8081/api/auth/signin" 41 | }, 42 | "response": [] 43 | }, 44 | { 45 | "name": "New Request", 46 | "request": { 47 | "auth": { 48 | "type": "bearer", 49 | "bearer": { 50 | "token": "eyJhbGciOiJIUzUxMiJ9.eyJzdWIiOiJtb2hhbWVkIiwiaWF0IjoxNjQ5OTY5NzM1LCJleHAiOjE2NTAwNTYxMzV9.ghB5j3RKhEd-FMruEYhcItBGZxemzIdUmbkg2y9pdED8dKVXU1J_JcxZ6-BZK45fqHjXezX3sPASDKBBz9PnlA" 51 | } 52 | }, 53 | "method": "GET", 54 | "header": [], 55 | "url": "http://localhost:8081/api/test/user" 56 | }, 57 | "response": [] 58 | }, 59 | { 60 | "name": "New Request", 61 | "request": { 62 | "auth": { 63 | "type": "bearer", 64 | "bearer": { 65 | "token": "eyJhbGciOiJIUzUxMiJ9.eyJzdWIiOiJtb2hhbWVkIiwiaWF0IjoxNjQ5OTY5NzM1LCJleHAiOjE2NTAwNTYxMzV9.ghB5j3RKhEd-FMruEYhcItBGZxemzIdUmbkg2y9pdED8dKVXU1J_JcxZ6-BZK45fqHjXezX3sPASDKBBz9PnlA" 66 | } 67 | }, 68 | "method": "GET", 69 | "header": [], 70 | "url": "http://localhost:8081/api/test/user" 71 | }, 72 | "response": [] 73 | }, 74 | { 75 | "name": "New Request", 76 | "request": { 77 | "method": "GET", 78 | "header": [], 79 | "url": "http://localhost:8081/api/user/profile" 80 | }, 81 | "response": [] 82 | } 83 | ] 84 | } -------------------------------------------------------------------------------- /src/main/java/com/backend/springjwt/security/jwt/AuthTokenFilter.java: -------------------------------------------------------------------------------- 1 | package com.backend.springjwt.security.jwt; 2 | 3 | import java.io.IOException; 4 | 5 | import javax.servlet.FilterChain; 6 | import javax.servlet.ServletException; 7 | import javax.servlet.http.HttpServletRequest; 8 | import javax.servlet.http.HttpServletResponse; 9 | 10 | import org.slf4j.Logger; 11 | import org.slf4j.LoggerFactory; 12 | import org.springframework.beans.factory.annotation.Autowired; 13 | import org.springframework.security.authentication.UsernamePasswordAuthenticationToken; 14 | import org.springframework.security.core.context.SecurityContextHolder; 15 | import org.springframework.security.core.userdetails.UserDetails; 16 | import org.springframework.security.web.authentication.WebAuthenticationDetailsSource; 17 | import org.springframework.util.StringUtils; 18 | import org.springframework.web.filter.OncePerRequestFilter; 19 | 20 | import com.backend.springjwt.security.services.UserDetailsServiceImpl; 21 | 22 | public class AuthTokenFilter extends OncePerRequestFilter { 23 | @Autowired 24 | private JwtUtils jwtUtils; 25 | 26 | @Autowired 27 | private UserDetailsServiceImpl userDetailsService; 28 | 29 | private static final Logger logger = LoggerFactory.getLogger(AuthTokenFilter.class); 30 | 31 | @Override 32 | protected void doFilterInternal(HttpServletRequest request, HttpServletResponse response, FilterChain filterChain) 33 | throws ServletException, IOException { 34 | try { 35 | String jwt = parseJwt(request); 36 | if (jwt != null && jwtUtils.validateJwtToken(jwt)) { 37 | String username = jwtUtils.getUserNameFromJwtToken(jwt); 38 | 39 | UserDetails userDetails = userDetailsService.loadUserByUsername(username); 40 | UsernamePasswordAuthenticationToken authentication = 41 | new UsernamePasswordAuthenticationToken( 42 | userDetails, 43 | null, 44 | userDetails.getAuthorities()); 45 | authentication.setDetails(new WebAuthenticationDetailsSource().buildDetails(request)); 46 | 47 | SecurityContextHolder.getContext().setAuthentication(authentication); 48 | } 49 | } catch (Exception e) { 50 | logger.error("Cannot set user authentication: {}", e); 51 | } 52 | 53 | filterChain.doFilter(request, response); 54 | } 55 | 56 | public String parseJwt(HttpServletRequest request) { 57 | String headerAuth = request.getHeader("Authorization"); 58 | 59 | if (StringUtils.hasText(headerAuth) && headerAuth.startsWith("Bearer ")) { 60 | return headerAuth.substring(7, headerAuth.length()); 61 | } 62 | 63 | return null; 64 | } 65 | } 66 | -------------------------------------------------------------------------------- /src/main/java/com/backend/springjwt/security/services/UserDetailsImpl.java: -------------------------------------------------------------------------------- 1 | package com.backend.springjwt.security.services; 2 | 3 | import java.util.Collection; 4 | import java.util.List; 5 | import java.util.Objects; 6 | import java.util.stream.Collectors; 7 | 8 | import org.springframework.security.core.GrantedAuthority; 9 | import org.springframework.security.core.authority.SimpleGrantedAuthority; 10 | import org.springframework.security.core.userdetails.UserDetails; 11 | 12 | import com.backend.springjwt.models.User; 13 | import com.fasterxml.jackson.annotation.JsonIgnore; 14 | 15 | public class UserDetailsImpl implements UserDetails { 16 | private static final long serialVersionUID = 1L; 17 | 18 | private Long id; 19 | 20 | private String username; 21 | 22 | private String email; 23 | 24 | @JsonIgnore 25 | private String password; 26 | 27 | private Collection authorities; 28 | 29 | public UserDetailsImpl(Long id, String username, String email, String password, 30 | Collection authorities) { 31 | this.id = id; 32 | this.username = username; 33 | this.email = email; 34 | this.password = password; 35 | this.authorities = authorities; 36 | } 37 | 38 | public static UserDetailsImpl build(User user) { 39 | List authorities = user.getRoles().stream() 40 | .map(role -> new SimpleGrantedAuthority(role.getName().name())) 41 | .collect(Collectors.toList()); 42 | 43 | return new UserDetailsImpl( 44 | user.getId(), 45 | user.getUsername(), 46 | user.getEmail(), 47 | user.getPassword(), 48 | authorities); 49 | } 50 | 51 | @Override 52 | public Collection getAuthorities() { 53 | return authorities; 54 | } 55 | 56 | public Long getId() { 57 | return id; 58 | } 59 | 60 | public String getEmail() { 61 | return email; 62 | } 63 | 64 | @Override 65 | public String getPassword() { 66 | return password; 67 | } 68 | 69 | @Override 70 | public String getUsername() { 71 | return username; 72 | } 73 | 74 | @Override 75 | public boolean isAccountNonExpired() { 76 | return true; 77 | } 78 | 79 | @Override 80 | public boolean isAccountNonLocked() { 81 | return true; 82 | } 83 | 84 | @Override 85 | public boolean isCredentialsNonExpired() { 86 | return true; 87 | } 88 | 89 | @Override 90 | public boolean isEnabled() { 91 | return true; 92 | } 93 | 94 | @Override 95 | public boolean equals(Object o) { 96 | if (this == o) 97 | return true; 98 | if (o == null || getClass() != o.getClass()) 99 | return false; 100 | UserDetailsImpl user = (UserDetailsImpl) o; 101 | return Objects.equals(id, user.id); 102 | } 103 | 104 | } 105 | -------------------------------------------------------------------------------- /src/main/java/com/backend/springjwt/security/WebSecurityConfig.java: -------------------------------------------------------------------------------- 1 | package com.backend.springjwt.security; 2 | 3 | import org.springframework.beans.factory.annotation.Autowired; 4 | import org.springframework.context.annotation.Bean; 5 | import org.springframework.context.annotation.Configuration; 6 | import org.springframework.security.authentication.AuthenticationManager; 7 | import org.springframework.security.config.annotation.authentication.builders.AuthenticationManagerBuilder; 8 | import org.springframework.security.config.annotation.method.configuration.EnableGlobalMethodSecurity; 9 | import org.springframework.security.config.annotation.web.builders.HttpSecurity; 10 | import org.springframework.security.config.annotation.web.configuration.EnableWebSecurity; 11 | import org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter; 12 | import org.springframework.security.config.http.SessionCreationPolicy; 13 | import org.springframework.security.crypto.bcrypt.BCryptPasswordEncoder; 14 | import org.springframework.security.crypto.password.PasswordEncoder; 15 | import org.springframework.security.web.authentication.UsernamePasswordAuthenticationFilter; 16 | 17 | import com.backend.springjwt.security.jwt.AuthEntryPointJwt; 18 | import com.backend.springjwt.security.jwt.AuthTokenFilter; 19 | import com.backend.springjwt.security.services.UserDetailsServiceImpl; 20 | 21 | @Configuration 22 | @EnableWebSecurity 23 | @EnableGlobalMethodSecurity( 24 | // securedEnabled = true, 25 | // jsr250Enabled = true, 26 | prePostEnabled = true) 27 | public class WebSecurityConfig extends WebSecurityConfigurerAdapter { 28 | @Autowired 29 | UserDetailsServiceImpl userDetailsService; 30 | 31 | @Autowired 32 | private AuthEntryPointJwt unauthorizedHandler; 33 | 34 | @Bean 35 | public AuthTokenFilter authenticationJwtTokenFilter() { 36 | return new AuthTokenFilter(); 37 | } 38 | 39 | @Override 40 | public void configure(AuthenticationManagerBuilder authenticationManagerBuilder) throws Exception { 41 | authenticationManagerBuilder.userDetailsService(userDetailsService).passwordEncoder(passwordEncoder()); 42 | } 43 | 44 | @Bean 45 | @Override 46 | public AuthenticationManager authenticationManagerBean() throws Exception { 47 | return super.authenticationManagerBean(); 48 | } 49 | 50 | @Bean 51 | public PasswordEncoder passwordEncoder() { 52 | return new BCryptPasswordEncoder(); 53 | } 54 | 55 | @Override 56 | protected void configure(HttpSecurity http) throws Exception { 57 | http.cors().and().csrf().disable() 58 | .exceptionHandling().authenticationEntryPoint(unauthorizedHandler).and() 59 | .sessionManagement().sessionCreationPolicy(SessionCreationPolicy.STATELESS).and() 60 | .authorizeRequests().antMatchers("/api/auth/**").permitAll() 61 | .antMatchers("/api/test/**").permitAll() 62 | .anyRequest().authenticated(); 63 | 64 | http.addFilterBefore(authenticationJwtTokenFilter(), UsernamePasswordAuthenticationFilter.class); 65 | } 66 | } 67 | -------------------------------------------------------------------------------- /.mvn/wrapper/MavenWrapperDownloader.java: -------------------------------------------------------------------------------- 1 | /* 2 | Licensed to the Apache Software Foundation (ASF) under one 3 | or more contributor license agreements. See the NOTICE file 4 | distributed with this work for additional information 5 | regarding copyright ownership. The ASF licenses this file 6 | to you under the Apache License, Version 2.0 (the 7 | "License"); you may not use this file except in compliance 8 | with the License. You may obtain a copy of the License at 9 | 10 | https://www.apache.org/licenses/LICENSE-2.0 11 | 12 | Unless required by applicable law or agreed to in writing, 13 | software distributed under the License is distributed on an 14 | "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY 15 | KIND, either express or implied. See the License for the 16 | specific language governing permissions and limitations 17 | under the License. 18 | */ 19 | 20 | import java.io.File; 21 | import java.io.FileInputStream; 22 | import java.io.FileOutputStream; 23 | import java.io.IOException; 24 | import java.net.URL; 25 | import java.nio.channels.Channels; 26 | import java.nio.channels.ReadableByteChannel; 27 | import java.util.Properties; 28 | 29 | public class MavenWrapperDownloader { 30 | 31 | /** 32 | * Default URL to download the maven-wrapper.jar from, if no 'downloadUrl' is provided. 33 | */ 34 | private static final String DEFAULT_DOWNLOAD_URL = 35 | "https://repo.maven.apache.org/maven2/io/takari/maven-wrapper/0.4.2/maven-wrapper-0.4.2.jar"; 36 | 37 | /** 38 | * Path to the maven-wrapper.properties file, which might contain a downloadUrl property to 39 | * use instead of the default one. 40 | */ 41 | private static final String MAVEN_WRAPPER_PROPERTIES_PATH = 42 | ".mvn/wrapper/maven-wrapper.properties"; 43 | 44 | /** 45 | * Path where the maven-wrapper.jar will be saved to. 46 | */ 47 | private static final String MAVEN_WRAPPER_JAR_PATH = 48 | ".mvn/wrapper/maven-wrapper.jar"; 49 | 50 | /** 51 | * Name of the property which should be used to override the default download url for the wrapper. 52 | */ 53 | private static final String PROPERTY_NAME_WRAPPER_URL = "wrapperUrl"; 54 | 55 | public static void main(String args[]) { 56 | System.out.println("- Downloader started"); 57 | File baseDirectory = new File(args[0]); 58 | System.out.println("- Using base directory: " + baseDirectory.getAbsolutePath()); 59 | 60 | // If the maven-wrapper.properties exists, read it and check if it contains a custom 61 | // wrapperUrl parameter. 62 | File mavenWrapperPropertyFile = new File(baseDirectory, MAVEN_WRAPPER_PROPERTIES_PATH); 63 | String url = DEFAULT_DOWNLOAD_URL; 64 | if(mavenWrapperPropertyFile.exists()) { 65 | FileInputStream mavenWrapperPropertyFileInputStream = null; 66 | try { 67 | mavenWrapperPropertyFileInputStream = new FileInputStream(mavenWrapperPropertyFile); 68 | Properties mavenWrapperProperties = new Properties(); 69 | mavenWrapperProperties.load(mavenWrapperPropertyFileInputStream); 70 | url = mavenWrapperProperties.getProperty(PROPERTY_NAME_WRAPPER_URL, url); 71 | } catch (IOException e) { 72 | System.out.println("- ERROR loading '" + MAVEN_WRAPPER_PROPERTIES_PATH + "'"); 73 | } finally { 74 | try { 75 | if(mavenWrapperPropertyFileInputStream != null) { 76 | mavenWrapperPropertyFileInputStream.close(); 77 | } 78 | } catch (IOException e) { 79 | // Ignore ... 80 | } 81 | } 82 | } 83 | System.out.println("- Downloading from: : " + url); 84 | 85 | File outputFile = new File(baseDirectory.getAbsolutePath(), MAVEN_WRAPPER_JAR_PATH); 86 | if(!outputFile.getParentFile().exists()) { 87 | if(!outputFile.getParentFile().mkdirs()) { 88 | System.out.println( 89 | "- ERROR creating output direcrory '" + outputFile.getParentFile().getAbsolutePath() + "'"); 90 | } 91 | } 92 | System.out.println("- Downloading to: " + outputFile.getAbsolutePath()); 93 | try { 94 | downloadFileFromURL(url, outputFile); 95 | System.out.println("Done"); 96 | System.exit(0); 97 | } catch (Throwable e) { 98 | System.out.println("- Error downloading"); 99 | e.printStackTrace(); 100 | System.exit(1); 101 | } 102 | } 103 | 104 | private static void downloadFileFromURL(String urlString, File destination) throws Exception { 105 | URL website = new URL(urlString); 106 | ReadableByteChannel rbc; 107 | rbc = Channels.newChannel(website.openStream()); 108 | FileOutputStream fos = new FileOutputStream(destination); 109 | fos.getChannel().transferFrom(rbc, 0, Long.MAX_VALUE); 110 | fos.close(); 111 | rbc.close(); 112 | } 113 | 114 | } 115 | -------------------------------------------------------------------------------- /src/main/java/com/backend/springjwt/controllers/AuthController.java: -------------------------------------------------------------------------------- 1 | package com.backend.springjwt.controllers; 2 | 3 | import java.util.HashSet; 4 | import java.util.List; 5 | import java.util.Set; 6 | import java.util.stream.Collectors; 7 | 8 | import javax.validation.Valid; 9 | 10 | import org.springframework.beans.factory.annotation.Autowired; 11 | import org.springframework.http.ResponseEntity; 12 | import org.springframework.security.authentication.AuthenticationManager; 13 | import org.springframework.security.authentication.UsernamePasswordAuthenticationToken; 14 | import org.springframework.security.core.Authentication; 15 | import org.springframework.security.core.context.SecurityContextHolder; 16 | import org.springframework.security.crypto.password.PasswordEncoder; 17 | import org.springframework.web.bind.annotation.CrossOrigin; 18 | import org.springframework.web.bind.annotation.PostMapping; 19 | import org.springframework.web.bind.annotation.RequestBody; 20 | import org.springframework.web.bind.annotation.RequestMapping; 21 | import org.springframework.web.bind.annotation.RestController; 22 | 23 | import com.backend.springjwt.models.ERole; 24 | import com.backend.springjwt.models.Role; 25 | import com.backend.springjwt.models.User; 26 | import com.backend.springjwt.payload.request.LoginRequest; 27 | import com.backend.springjwt.payload.request.SignupRequest; 28 | import com.backend.springjwt.payload.response.JwtResponse; 29 | import com.backend.springjwt.payload.response.MessageResponse; 30 | import com.backend.springjwt.repository.RoleRepository; 31 | import com.backend.springjwt.repository.UserRepository; 32 | import com.backend.springjwt.security.jwt.JwtUtils; 33 | import com.backend.springjwt.security.services.UserDetailsImpl; 34 | 35 | @CrossOrigin(origins = "*", maxAge = 3600) 36 | @RestController 37 | @RequestMapping("/api/auth") 38 | public class AuthController { 39 | @Autowired 40 | AuthenticationManager authenticationManager; 41 | 42 | @Autowired 43 | UserRepository userRepository; 44 | 45 | @Autowired 46 | RoleRepository roleRepository; 47 | 48 | @Autowired 49 | PasswordEncoder encoder; 50 | 51 | @Autowired 52 | JwtUtils jwtUtils; 53 | 54 | @PostMapping("/signin") 55 | public ResponseEntity authenticateUser(@Valid @RequestBody LoginRequest loginRequest) { 56 | 57 | Authentication authentication = authenticationManager.authenticate( 58 | new UsernamePasswordAuthenticationToken(loginRequest.getUsername(), loginRequest.getPassword())); 59 | 60 | SecurityContextHolder.getContext().setAuthentication(authentication); 61 | String jwt = jwtUtils.generateJwtToken(authentication); 62 | 63 | UserDetailsImpl userDetails = (UserDetailsImpl) authentication.getPrincipal(); 64 | List roles = userDetails.getAuthorities().stream() 65 | .map(item -> item.getAuthority()) 66 | .collect(Collectors.toList()); 67 | 68 | return ResponseEntity.ok(new JwtResponse(jwt, 69 | userDetails.getId(), 70 | userDetails.getUsername(), 71 | userDetails.getEmail(), 72 | roles)); 73 | } 74 | 75 | @PostMapping("/signup") 76 | public ResponseEntity registerUser(@Valid @RequestBody SignupRequest signUpRequest) { 77 | if (userRepository.existsByUsername(signUpRequest.getUsername())) { 78 | return ResponseEntity 79 | .badRequest() 80 | .body(new MessageResponse("Error: Username is already taken!")); 81 | } 82 | 83 | if (userRepository.existsByEmail(signUpRequest.getEmail())) { 84 | return ResponseEntity 85 | .badRequest() 86 | .body(new MessageResponse("Error: Email is already in use!")); 87 | } 88 | 89 | // Create new user's account 90 | User user = new User(signUpRequest.getUsername(), 91 | signUpRequest.getEmail(), 92 | encoder.encode(signUpRequest.getPassword())); 93 | 94 | Set strRoles = signUpRequest.getRole(); 95 | Set roles = new HashSet<>(); 96 | 97 | if (strRoles == null) { 98 | Role userRole = roleRepository.findByName(ERole.ROLE_USER) 99 | .orElseThrow(() -> new RuntimeException("Error: Role is not found.")); 100 | roles.add(userRole); 101 | } else { 102 | strRoles.forEach(role -> { 103 | switch (role) { 104 | case "admin": 105 | Role adminRole = roleRepository.findByName(ERole.ROLE_ADMIN) 106 | .orElseThrow(() -> new RuntimeException("Error: Role is not found.")); 107 | roles.add(adminRole); 108 | 109 | break; 110 | case "mod": 111 | Role modRole = roleRepository.findByName(ERole.ROLE_MODERATOR) 112 | .orElseThrow(() -> new RuntimeException("Error: Role is not found.")); 113 | roles.add(modRole); 114 | 115 | break; 116 | default: 117 | Role userRole = roleRepository.findByName(ERole.ROLE_USER) 118 | .orElseThrow(() -> new RuntimeException("Error: Role is not found.")); 119 | roles.add(userRole); 120 | } 121 | }); 122 | } 123 | 124 | user.setRoles(roles); 125 | userRepository.save(user); 126 | 127 | return ResponseEntity.ok(new MessageResponse("User registered successfully!")); 128 | } 129 | } 130 | -------------------------------------------------------------------------------- /mvnw.cmd: -------------------------------------------------------------------------------- 1 | @REM ---------------------------------------------------------------------------- 2 | @REM Licensed to the Apache Software Foundation (ASF) under one 3 | @REM or more contributor license agreements. See the NOTICE file 4 | @REM distributed with this work for additional information 5 | @REM regarding copyright ownership. The ASF licenses this file 6 | @REM to you under the Apache License, Version 2.0 (the 7 | @REM "License"); you may not use this file except in compliance 8 | @REM with the License. You may obtain a copy of the License at 9 | @REM 10 | @REM https://www.apache.org/licenses/LICENSE-2.0 11 | @REM 12 | @REM Unless required by applicable law or agreed to in writing, 13 | @REM software distributed under the License is distributed on an 14 | @REM "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY 15 | @REM KIND, either express or implied. See the License for the 16 | @REM specific language governing permissions and limitations 17 | @REM under the License. 18 | @REM ---------------------------------------------------------------------------- 19 | 20 | @REM ---------------------------------------------------------------------------- 21 | @REM Maven2 Start Up Batch script 22 | @REM 23 | @REM Required ENV vars: 24 | @REM JAVA_HOME - location of a JDK home dir 25 | @REM 26 | @REM Optional ENV vars 27 | @REM M2_HOME - location of maven2's installed home dir 28 | @REM MAVEN_BATCH_ECHO - set to 'on' to enable the echoing of the batch commands 29 | @REM MAVEN_BATCH_PAUSE - set to 'on' to wait for a key stroke before ending 30 | @REM MAVEN_OPTS - parameters passed to the Java VM when running Maven 31 | @REM e.g. to debug Maven itself, use 32 | @REM set MAVEN_OPTS=-Xdebug -Xrunjdwp:transport=dt_socket,server=y,suspend=y,address=8000 33 | @REM MAVEN_SKIP_RC - flag to disable loading of mavenrc files 34 | @REM ---------------------------------------------------------------------------- 35 | 36 | @REM Begin all REM lines with '@' in case MAVEN_BATCH_ECHO is 'on' 37 | @echo off 38 | @REM set title of command window 39 | title %0 40 | @REM enable echoing my setting MAVEN_BATCH_ECHO to 'on' 41 | @if "%MAVEN_BATCH_ECHO%" == "on" echo %MAVEN_BATCH_ECHO% 42 | 43 | @REM set %HOME% to equivalent of $HOME 44 | if "%HOME%" == "" (set "HOME=%HOMEDRIVE%%HOMEPATH%") 45 | 46 | @REM Execute a user defined script before this one 47 | if not "%MAVEN_SKIP_RC%" == "" goto skipRcPre 48 | @REM check for pre script, once with legacy .bat ending and once with .cmd ending 49 | if exist "%HOME%\mavenrc_pre.bat" call "%HOME%\mavenrc_pre.bat" 50 | if exist "%HOME%\mavenrc_pre.cmd" call "%HOME%\mavenrc_pre.cmd" 51 | :skipRcPre 52 | 53 | @setlocal 54 | 55 | set ERROR_CODE=0 56 | 57 | @REM To isolate internal variables from possible post scripts, we use another setlocal 58 | @setlocal 59 | 60 | @REM ==== START VALIDATION ==== 61 | if not "%JAVA_HOME%" == "" goto OkJHome 62 | 63 | echo. 64 | echo Error: JAVA_HOME not found in your environment. >&2 65 | echo Please set the JAVA_HOME variable in your environment to match the >&2 66 | echo location of your Java installation. >&2 67 | echo. 68 | goto error 69 | 70 | :OkJHome 71 | if exist "%JAVA_HOME%\bin\java.exe" goto init 72 | 73 | echo. 74 | echo Error: JAVA_HOME is set to an invalid directory. >&2 75 | echo JAVA_HOME = "%JAVA_HOME%" >&2 76 | echo Please set the JAVA_HOME variable in your environment to match the >&2 77 | echo location of your Java installation. >&2 78 | echo. 79 | goto error 80 | 81 | @REM ==== END VALIDATION ==== 82 | 83 | :init 84 | 85 | @REM Find the project base dir, i.e. the directory that contains the folder ".mvn". 86 | @REM Fallback to current working directory if not found. 87 | 88 | set MAVEN_PROJECTBASEDIR=%MAVEN_BASEDIR% 89 | IF NOT "%MAVEN_PROJECTBASEDIR%"=="" goto endDetectBaseDir 90 | 91 | set EXEC_DIR=%CD% 92 | set WDIR=%EXEC_DIR% 93 | :findBaseDir 94 | IF EXIST "%WDIR%"\.mvn goto baseDirFound 95 | cd .. 96 | IF "%WDIR%"=="%CD%" goto baseDirNotFound 97 | set WDIR=%CD% 98 | goto findBaseDir 99 | 100 | :baseDirFound 101 | set MAVEN_PROJECTBASEDIR=%WDIR% 102 | cd "%EXEC_DIR%" 103 | goto endDetectBaseDir 104 | 105 | :baseDirNotFound 106 | set MAVEN_PROJECTBASEDIR=%EXEC_DIR% 107 | cd "%EXEC_DIR%" 108 | 109 | :endDetectBaseDir 110 | 111 | IF NOT EXIST "%MAVEN_PROJECTBASEDIR%\.mvn\jvm.config" goto endReadAdditionalConfig 112 | 113 | @setlocal EnableExtensions EnableDelayedExpansion 114 | for /F "usebackq delims=" %%a in ("%MAVEN_PROJECTBASEDIR%\.mvn\jvm.config") do set JVM_CONFIG_MAVEN_PROPS=!JVM_CONFIG_MAVEN_PROPS! %%a 115 | @endlocal & set JVM_CONFIG_MAVEN_PROPS=%JVM_CONFIG_MAVEN_PROPS% 116 | 117 | :endReadAdditionalConfig 118 | 119 | SET MAVEN_JAVA_EXE="%JAVA_HOME%\bin\java.exe" 120 | set WRAPPER_JAR="%MAVEN_PROJECTBASEDIR%\.mvn\wrapper\maven-wrapper.jar" 121 | set WRAPPER_LAUNCHER=org.apache.maven.wrapper.MavenWrapperMain 122 | 123 | set DOWNLOAD_URL="https://repo.maven.apache.org/maven2/io/takari/maven-wrapper/0.4.2/maven-wrapper-0.4.2.jar" 124 | FOR /F "tokens=1,2 delims==" %%A IN (%MAVEN_PROJECTBASEDIR%\.mvn\wrapper\maven-wrapper.properties) DO ( 125 | IF "%%A"=="wrapperUrl" SET DOWNLOAD_URL=%%B 126 | ) 127 | 128 | @REM Extension to allow automatically downloading the maven-wrapper.jar from Maven-central 129 | @REM This allows using the maven wrapper in projects that prohibit checking in binary data. 130 | if exist %WRAPPER_JAR% ( 131 | echo Found %WRAPPER_JAR% 132 | ) else ( 133 | echo Couldn't find %WRAPPER_JAR%, downloading it ... 134 | echo Downloading from: %DOWNLOAD_URL% 135 | powershell -Command "(New-Object Net.WebClient).DownloadFile('%DOWNLOAD_URL%', '%WRAPPER_JAR%')" 136 | echo Finished downloading %WRAPPER_JAR% 137 | ) 138 | @REM End of extension 139 | 140 | %MAVEN_JAVA_EXE% %JVM_CONFIG_MAVEN_PROPS% %MAVEN_OPTS% %MAVEN_DEBUG_OPTS% -classpath %WRAPPER_JAR% "-Dmaven.multiModuleProjectDirectory=%MAVEN_PROJECTBASEDIR%" %WRAPPER_LAUNCHER% %MAVEN_CONFIG% %* 141 | if ERRORLEVEL 1 goto error 142 | goto end 143 | 144 | :error 145 | set ERROR_CODE=1 146 | 147 | :end 148 | @endlocal & set ERROR_CODE=%ERROR_CODE% 149 | 150 | if not "%MAVEN_SKIP_RC%" == "" goto skipRcPost 151 | @REM check for post script, once with legacy .bat ending and once with .cmd ending 152 | if exist "%HOME%\mavenrc_post.bat" call "%HOME%\mavenrc_post.bat" 153 | if exist "%HOME%\mavenrc_post.cmd" call "%HOME%\mavenrc_post.cmd" 154 | :skipRcPost 155 | 156 | @REM pause the script if MAVEN_BATCH_PAUSE is set to 'on' 157 | if "%MAVEN_BATCH_PAUSE%" == "on" pause 158 | 159 | if "%MAVEN_TERMINATE_CMD%" == "on" exit %ERROR_CODE% 160 | 161 | exit /B %ERROR_CODE% 162 | -------------------------------------------------------------------------------- /bin/mvnw.cmd: -------------------------------------------------------------------------------- 1 | @REM ---------------------------------------------------------------------------- 2 | @REM Licensed to the Apache Software Foundation (ASF) under one 3 | @REM or more contributor license agreements. See the NOTICE file 4 | @REM distributed with this work for additional information 5 | @REM regarding copyright ownership. The ASF licenses this file 6 | @REM to you under the Apache License, Version 2.0 (the 7 | @REM "License"); you may not use this file except in compliance 8 | @REM with the License. You may obtain a copy of the License at 9 | @REM 10 | @REM https://www.apache.org/licenses/LICENSE-2.0 11 | @REM 12 | @REM Unless required by applicable law or agreed to in writing, 13 | @REM software distributed under the License is distributed on an 14 | @REM "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY 15 | @REM KIND, either express or implied. See the License for the 16 | @REM specific language governing permissions and limitations 17 | @REM under the License. 18 | @REM ---------------------------------------------------------------------------- 19 | 20 | @REM ---------------------------------------------------------------------------- 21 | @REM Maven2 Start Up Batch script 22 | @REM 23 | @REM Required ENV vars: 24 | @REM JAVA_HOME - location of a JDK home dir 25 | @REM 26 | @REM Optional ENV vars 27 | @REM M2_HOME - location of maven2's installed home dir 28 | @REM MAVEN_BATCH_ECHO - set to 'on' to enable the echoing of the batch commands 29 | @REM MAVEN_BATCH_PAUSE - set to 'on' to wait for a key stroke before ending 30 | @REM MAVEN_OPTS - parameters passed to the Java VM when running Maven 31 | @REM e.g. to debug Maven itself, use 32 | @REM set MAVEN_OPTS=-Xdebug -Xrunjdwp:transport=dt_socket,server=y,suspend=y,address=8000 33 | @REM MAVEN_SKIP_RC - flag to disable loading of mavenrc files 34 | @REM ---------------------------------------------------------------------------- 35 | 36 | @REM Begin all REM lines with '@' in case MAVEN_BATCH_ECHO is 'on' 37 | @echo off 38 | @REM set title of command window 39 | title %0 40 | @REM enable echoing my setting MAVEN_BATCH_ECHO to 'on' 41 | @if "%MAVEN_BATCH_ECHO%" == "on" echo %MAVEN_BATCH_ECHO% 42 | 43 | @REM set %HOME% to equivalent of $HOME 44 | if "%HOME%" == "" (set "HOME=%HOMEDRIVE%%HOMEPATH%") 45 | 46 | @REM Execute a user defined script before this one 47 | if not "%MAVEN_SKIP_RC%" == "" goto skipRcPre 48 | @REM check for pre script, once with legacy .bat ending and once with .cmd ending 49 | if exist "%HOME%\mavenrc_pre.bat" call "%HOME%\mavenrc_pre.bat" 50 | if exist "%HOME%\mavenrc_pre.cmd" call "%HOME%\mavenrc_pre.cmd" 51 | :skipRcPre 52 | 53 | @setlocal 54 | 55 | set ERROR_CODE=0 56 | 57 | @REM To isolate internal variables from possible post scripts, we use another setlocal 58 | @setlocal 59 | 60 | @REM ==== START VALIDATION ==== 61 | if not "%JAVA_HOME%" == "" goto OkJHome 62 | 63 | echo. 64 | echo Error: JAVA_HOME not found in your environment. >&2 65 | echo Please set the JAVA_HOME variable in your environment to match the >&2 66 | echo location of your Java installation. >&2 67 | echo. 68 | goto error 69 | 70 | :OkJHome 71 | if exist "%JAVA_HOME%\bin\java.exe" goto init 72 | 73 | echo. 74 | echo Error: JAVA_HOME is set to an invalid directory. >&2 75 | echo JAVA_HOME = "%JAVA_HOME%" >&2 76 | echo Please set the JAVA_HOME variable in your environment to match the >&2 77 | echo location of your Java installation. >&2 78 | echo. 79 | goto error 80 | 81 | @REM ==== END VALIDATION ==== 82 | 83 | :init 84 | 85 | @REM Find the project base dir, i.e. the directory that contains the folder ".mvn". 86 | @REM Fallback to current working directory if not found. 87 | 88 | set MAVEN_PROJECTBASEDIR=%MAVEN_BASEDIR% 89 | IF NOT "%MAVEN_PROJECTBASEDIR%"=="" goto endDetectBaseDir 90 | 91 | set EXEC_DIR=%CD% 92 | set WDIR=%EXEC_DIR% 93 | :findBaseDir 94 | IF EXIST "%WDIR%"\.mvn goto baseDirFound 95 | cd .. 96 | IF "%WDIR%"=="%CD%" goto baseDirNotFound 97 | set WDIR=%CD% 98 | goto findBaseDir 99 | 100 | :baseDirFound 101 | set MAVEN_PROJECTBASEDIR=%WDIR% 102 | cd "%EXEC_DIR%" 103 | goto endDetectBaseDir 104 | 105 | :baseDirNotFound 106 | set MAVEN_PROJECTBASEDIR=%EXEC_DIR% 107 | cd "%EXEC_DIR%" 108 | 109 | :endDetectBaseDir 110 | 111 | IF NOT EXIST "%MAVEN_PROJECTBASEDIR%\.mvn\jvm.config" goto endReadAdditionalConfig 112 | 113 | @setlocal EnableExtensions EnableDelayedExpansion 114 | for /F "usebackq delims=" %%a in ("%MAVEN_PROJECTBASEDIR%\.mvn\jvm.config") do set JVM_CONFIG_MAVEN_PROPS=!JVM_CONFIG_MAVEN_PROPS! %%a 115 | @endlocal & set JVM_CONFIG_MAVEN_PROPS=%JVM_CONFIG_MAVEN_PROPS% 116 | 117 | :endReadAdditionalConfig 118 | 119 | SET MAVEN_JAVA_EXE="%JAVA_HOME%\bin\java.exe" 120 | set WRAPPER_JAR="%MAVEN_PROJECTBASEDIR%\.mvn\wrapper\maven-wrapper.jar" 121 | set WRAPPER_LAUNCHER=org.apache.maven.wrapper.MavenWrapperMain 122 | 123 | set DOWNLOAD_URL="https://repo.maven.apache.org/maven2/io/takari/maven-wrapper/0.4.2/maven-wrapper-0.4.2.jar" 124 | FOR /F "tokens=1,2 delims==" %%A IN (%MAVEN_PROJECTBASEDIR%\.mvn\wrapper\maven-wrapper.properties) DO ( 125 | IF "%%A"=="wrapperUrl" SET DOWNLOAD_URL=%%B 126 | ) 127 | 128 | @REM Extension to allow automatically downloading the maven-wrapper.jar from Maven-central 129 | @REM This allows using the maven wrapper in projects that prohibit checking in binary data. 130 | if exist %WRAPPER_JAR% ( 131 | echo Found %WRAPPER_JAR% 132 | ) else ( 133 | echo Couldn't find %WRAPPER_JAR%, downloading it ... 134 | echo Downloading from: %DOWNLOAD_URL% 135 | powershell -Command "(New-Object Net.WebClient).DownloadFile('%DOWNLOAD_URL%', '%WRAPPER_JAR%')" 136 | echo Finished downloading %WRAPPER_JAR% 137 | ) 138 | @REM End of extension 139 | 140 | %MAVEN_JAVA_EXE% %JVM_CONFIG_MAVEN_PROPS% %MAVEN_OPTS% %MAVEN_DEBUG_OPTS% -classpath %WRAPPER_JAR% "-Dmaven.multiModuleProjectDirectory=%MAVEN_PROJECTBASEDIR%" %WRAPPER_LAUNCHER% %MAVEN_CONFIG% %* 141 | if ERRORLEVEL 1 goto error 142 | goto end 143 | 144 | :error 145 | set ERROR_CODE=1 146 | 147 | :end 148 | @endlocal & set ERROR_CODE=%ERROR_CODE% 149 | 150 | if not "%MAVEN_SKIP_RC%" == "" goto skipRcPost 151 | @REM check for post script, once with legacy .bat ending and once with .cmd ending 152 | if exist "%HOME%\mavenrc_post.bat" call "%HOME%\mavenrc_post.bat" 153 | if exist "%HOME%\mavenrc_post.cmd" call "%HOME%\mavenrc_post.cmd" 154 | :skipRcPost 155 | 156 | @REM pause the script if MAVEN_BATCH_PAUSE is set to 'on' 157 | if "%MAVEN_BATCH_PAUSE%" == "on" pause 158 | 159 | if "%MAVEN_TERMINATE_CMD%" == "on" exit %ERROR_CODE% 160 | 161 | exit /B %ERROR_CODE% 162 | -------------------------------------------------------------------------------- /bin/README.md: -------------------------------------------------------------------------------- 1 | # Spring Boot JWT Authentication example with Spring Security & Spring Data JPA 2 | 3 | ## User Registration, User Login and Authorization process. 4 | The diagram shows flow of how we implement User Registration, User Login and Authorization process. 5 | 6 | ![spring-boot-jwt-authentication-spring-security-flow](spring-boot-jwt-authentication-spring-security-flow.png) 7 | 8 | ## Spring Boot Server Architecture with Spring Security 9 | You can have an overview of our Spring Boot Server with the diagram below: 10 | 11 | ![spring-boot-jwt-authentication-spring-security-architecture](spring-boot-jwt-authentication-spring-security-architecture.png) 12 | 13 | For more detail, please visit: 14 | > [Secure Spring Boot App with Spring Security & JWT Authentication](https://bezkoder.com/spring-boot-jwt-authentication/) 15 | 16 | > [For MongoDB](https://bezkoder.com/spring-boot-jwt-auth-mongodb/) 17 | 18 | ## Refresh Token 19 | 20 | ![spring-boot-refresh-token-jwt-example-flow](spring-boot-refresh-token-jwt-example-flow.png) 21 | 22 | For instruction: [Spring Boot Refresh Token with JWT example](https://bezkoder.com/spring-boot-refresh-token-jwt/) 23 | 24 | ## Fullstack Authentication 25 | 26 | > [Spring Boot + Vue.js JWT Authentication](https://bezkoder.com/spring-boot-vue-js-authentication-jwt-spring-security/) 27 | 28 | > [Spring Boot + Angular 8 JWT Authentication](https://bezkoder.com/angular-spring-boot-jwt-auth/) 29 | 30 | > [Spring Boot + Angular 10 JWT Authentication](https://bezkoder.com/angular-10-spring-boot-jwt-auth/) 31 | 32 | > [Spring Boot + Angular 11 JWT Authentication](https://bezkoder.com/angular-11-spring-boot-jwt-auth/) 33 | 34 | > [Spring Boot + Angular 12 JWT Authentication](https://www.bezkoder.com/angular-12-spring-boot-jwt-auth/) 35 | 36 | > [Spring Boot + React JWT Authentication](https://bezkoder.com/spring-boot-react-jwt-auth/) 37 | 38 | ## Fullstack CRUD App 39 | 40 | > [Vue.js + Spring Boot + H2 Embedded database example](https://www.bezkoder.com/spring-boot-vue-js-crud-example/) 41 | 42 | > [Vue.js + Spring Boot + MySQL example](https://www.bezkoder.com/spring-boot-vue-js-mysql/) 43 | 44 | > [Vue.js + Spring Boot + PostgreSQL example](https://www.bezkoder.com/spring-boot-vue-js-postgresql/) 45 | 46 | > [Angular 8 + Spring Boot + Embedded database example](https://www.bezkoder.com/angular-spring-boot-crud/) 47 | 48 | > [Angular 8 + Spring Boot + MySQL example](https://bezkoder.com/angular-spring-boot-crud/) 49 | 50 | > [Angular 8 + Spring Boot + PostgreSQL example](https://bezkoder.com/angular-spring-boot-postgresql/) 51 | 52 | > [Angular 10 + Spring Boot + MySQL example](https://bezkoder.com/angular-10-spring-boot-crud/) 53 | 54 | > [Angular 10 + Spring Boot + PostgreSQL example](https://bezkoder.com/angular-10-spring-boot-postgresql/) 55 | 56 | > [Angular 11 + Spring Boot + MySQL example](https://bezkoder.com/angular-11-spring-boot-crud/) 57 | 58 | > [Angular 11 + Spring Boot + PostgreSQL example](https://bezkoder.com/angular-11-spring-boot-postgresql/) 59 | 60 | > [Angular 12 + Spring Boot + Embedded database example](https://www.bezkoder.com/angular-12-spring-boot-crud/) 61 | 62 | > [Angular 12 + Spring Boot + MySQL example](https://www.bezkoder.com/angular-12-spring-boot-mysql/) 63 | 64 | > [Angular 12 + Spring Boot + PostgreSQL example](https://www.bezkoder.com/angular-12-spring-boot-postgresql/) 65 | 66 | > [Angular 13 + Spring Boot + H2 Embedded Database example](https://www.bezkoder.com/spring-boot-angular-13-crud/) 67 | 68 | > [Angular 13 + Spring Boot + MySQL example](https://www.bezkoder.com/spring-boot-angular-13-mysql/) 69 | 70 | > [Angular 13 + Spring Boot + PostgreSQL example](https://www.bezkoder.com/spring-boot-angular-13-postgresql/) 71 | 72 | > [React + Spring Boot + MySQL example](https://bezkoder.com/react-spring-boot-crud/) 73 | 74 | > [React + Spring Boot + PostgreSQL example](https://bezkoder.com/spring-boot-react-postgresql/) 75 | 76 | > [React + Spring Boot + MongoDB example](https://bezkoder.com/react-spring-boot-mongodb/) 77 | 78 | Run both Back-end & Front-end in one place: 79 | > [Integrate Angular with Spring Boot Rest API](https://bezkoder.com/integrate-angular-spring-boot/) 80 | 81 | > [Integrate React.js with Spring Boot Rest API](https://bezkoder.com/integrate-reactjs-spring-boot/) 82 | 83 | > [Integrate Vue.js with Spring Boot Rest API](https://bezkoder.com/integrate-vue-spring-boot/) 84 | 85 | More Practice: 86 | > [Spring Boot File upload example with Multipart File](https://bezkoder.com/spring-boot-file-upload/) 87 | 88 | > [Exception handling: @RestControllerAdvice example in Spring Boot](https://bezkoder.com/spring-boot-restcontrolleradvice/) 89 | 90 | > [Spring Boot Repository Unit Test with @DataJpaTest](https://bezkoder.com/spring-boot-unit-test-jpa-repo-datajpatest/) 91 | 92 | Deployment: 93 | > [Deploy Spring Boot App on AWS – Elastic Beanstalk](https://www.bezkoder.com/deploy-spring-boot-aws-eb/) 94 | 95 | > [Docker Compose Spring Boot and MySQL example](https://www.bezkoder.com/docker-compose-spring-boot-mysql/) 96 | 97 | ## Dependency 98 | – If you want to use PostgreSQL: 99 | ```xml 100 | 101 | org.postgresql 102 | postgresql 103 | runtime 104 | 105 | ``` 106 | – or MySQL: 107 | ```xml 108 | 109 | mysql 110 | mysql-connector-java 111 | runtime 112 | 113 | ``` 114 | ## Configure Spring Datasource, JPA, App properties 115 | Open `src/main/resources/application.properties` 116 | - For PostgreSQL: 117 | ``` 118 | spring.datasource.url= jdbc:postgresql://localhost:5432/testdb 119 | spring.datasource.username= postgres 120 | spring.datasource.password= 123 121 | 122 | spring.jpa.properties.hibernate.jdbc.lob.non_contextual_creation= true 123 | spring.jpa.properties.hibernate.dialect= org.hibernate.dialect.PostgreSQLDialect 124 | 125 | # Hibernate ddl auto (create, create-drop, validate, update) 126 | spring.jpa.hibernate.ddl-auto= update 127 | 128 | # App Properties 129 | bezkoder.app.jwtSecret= bezKoderSecretKey 130 | bezkoder.app.jwtExpirationMs= 86400000 131 | ``` 132 | - For MySQL 133 | ``` 134 | spring.datasource.url= jdbc:mysql://localhost:3306/testdb?useSSL=false 135 | spring.datasource.username= root 136 | spring.datasource.password= 123456 137 | 138 | spring.jpa.properties.hibernate.dialect= org.hibernate.dialect.MySQL5InnoDBDialect 139 | spring.jpa.hibernate.ddl-auto= update 140 | 141 | # App Properties 142 | bezkoder.app.jwtSecret= bezKoderSecretKey 143 | bezkoder.app.jwtExpirationMs= 86400000 144 | ``` 145 | ## Run Spring Boot application 146 | ``` 147 | mvn spring-boot:run 148 | ``` 149 | 150 | ## Run following SQL insert statements 151 | ``` 152 | INSERT INTO roles(name) VALUES('ROLE_USER'); 153 | INSERT INTO roles(name) VALUES('ROLE_MODERATOR'); 154 | INSERT INTO roles(name) VALUES('ROLE_ADMIN'); 155 | ``` 156 | -------------------------------------------------------------------------------- /mvnw: -------------------------------------------------------------------------------- 1 | #!/bin/sh 2 | # ---------------------------------------------------------------------------- 3 | # Licensed to the Apache Software Foundation (ASF) under one 4 | # or more contributor license agreements. See the NOTICE file 5 | # distributed with this work for additional information 6 | # regarding copyright ownership. The ASF licenses this file 7 | # to you under the Apache License, Version 2.0 (the 8 | # "License"); you may not use this file except in compliance 9 | # with the License. You may obtain a copy of the License at 10 | # 11 | # https://www.apache.org/licenses/LICENSE-2.0 12 | # 13 | # Unless required by applicable law or agreed to in writing, 14 | # software distributed under the License is distributed on an 15 | # "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY 16 | # KIND, either express or implied. See the License for the 17 | # specific language governing permissions and limitations 18 | # under the License. 19 | # ---------------------------------------------------------------------------- 20 | 21 | # ---------------------------------------------------------------------------- 22 | # Maven2 Start Up Batch script 23 | # 24 | # Required ENV vars: 25 | # ------------------ 26 | # JAVA_HOME - location of a JDK home dir 27 | # 28 | # Optional ENV vars 29 | # ----------------- 30 | # M2_HOME - location of maven2's installed home dir 31 | # MAVEN_OPTS - parameters passed to the Java VM when running Maven 32 | # e.g. to debug Maven itself, use 33 | # set MAVEN_OPTS=-Xdebug -Xrunjdwp:transport=dt_socket,server=y,suspend=y,address=8000 34 | # MAVEN_SKIP_RC - flag to disable loading of mavenrc files 35 | # ---------------------------------------------------------------------------- 36 | 37 | if [ -z "$MAVEN_SKIP_RC" ] ; then 38 | 39 | if [ -f /etc/mavenrc ] ; then 40 | . /etc/mavenrc 41 | fi 42 | 43 | if [ -f "$HOME/.mavenrc" ] ; then 44 | . "$HOME/.mavenrc" 45 | fi 46 | 47 | fi 48 | 49 | # OS specific support. $var _must_ be set to either true or false. 50 | cygwin=false; 51 | darwin=false; 52 | mingw=false 53 | case "`uname`" in 54 | CYGWIN*) cygwin=true ;; 55 | MINGW*) mingw=true;; 56 | Darwin*) darwin=true 57 | # Use /usr/libexec/java_home if available, otherwise fall back to /Library/Java/Home 58 | # See https://developer.apple.com/library/mac/qa/qa1170/_index.html 59 | if [ -z "$JAVA_HOME" ]; then 60 | if [ -x "/usr/libexec/java_home" ]; then 61 | export JAVA_HOME="`/usr/libexec/java_home`" 62 | else 63 | export JAVA_HOME="/Library/Java/Home" 64 | fi 65 | fi 66 | ;; 67 | esac 68 | 69 | if [ -z "$JAVA_HOME" ] ; then 70 | if [ -r /etc/gentoo-release ] ; then 71 | JAVA_HOME=`java-config --jre-home` 72 | fi 73 | fi 74 | 75 | if [ -z "$M2_HOME" ] ; then 76 | ## resolve links - $0 may be a link to maven's home 77 | PRG="$0" 78 | 79 | # need this for relative symlinks 80 | while [ -h "$PRG" ] ; do 81 | ls=`ls -ld "$PRG"` 82 | link=`expr "$ls" : '.*-> \(.*\)$'` 83 | if expr "$link" : '/.*' > /dev/null; then 84 | PRG="$link" 85 | else 86 | PRG="`dirname "$PRG"`/$link" 87 | fi 88 | done 89 | 90 | saveddir=`pwd` 91 | 92 | M2_HOME=`dirname "$PRG"`/.. 93 | 94 | # make it fully qualified 95 | M2_HOME=`cd "$M2_HOME" && pwd` 96 | 97 | cd "$saveddir" 98 | # echo Using m2 at $M2_HOME 99 | fi 100 | 101 | # For Cygwin, ensure paths are in UNIX format before anything is touched 102 | if $cygwin ; then 103 | [ -n "$M2_HOME" ] && 104 | M2_HOME=`cygpath --unix "$M2_HOME"` 105 | [ -n "$JAVA_HOME" ] && 106 | JAVA_HOME=`cygpath --unix "$JAVA_HOME"` 107 | [ -n "$CLASSPATH" ] && 108 | CLASSPATH=`cygpath --path --unix "$CLASSPATH"` 109 | fi 110 | 111 | # For Mingw, ensure paths are in UNIX format before anything is touched 112 | if $mingw ; then 113 | [ -n "$M2_HOME" ] && 114 | M2_HOME="`(cd "$M2_HOME"; pwd)`" 115 | [ -n "$JAVA_HOME" ] && 116 | JAVA_HOME="`(cd "$JAVA_HOME"; pwd)`" 117 | # TODO classpath? 118 | fi 119 | 120 | if [ -z "$JAVA_HOME" ]; then 121 | javaExecutable="`which javac`" 122 | if [ -n "$javaExecutable" ] && ! [ "`expr \"$javaExecutable\" : '\([^ ]*\)'`" = "no" ]; then 123 | # readlink(1) is not available as standard on Solaris 10. 124 | readLink=`which readlink` 125 | if [ ! `expr "$readLink" : '\([^ ]*\)'` = "no" ]; then 126 | if $darwin ; then 127 | javaHome="`dirname \"$javaExecutable\"`" 128 | javaExecutable="`cd \"$javaHome\" && pwd -P`/javac" 129 | else 130 | javaExecutable="`readlink -f \"$javaExecutable\"`" 131 | fi 132 | javaHome="`dirname \"$javaExecutable\"`" 133 | javaHome=`expr "$javaHome" : '\(.*\)/bin'` 134 | JAVA_HOME="$javaHome" 135 | export JAVA_HOME 136 | fi 137 | fi 138 | fi 139 | 140 | if [ -z "$JAVACMD" ] ; then 141 | if [ -n "$JAVA_HOME" ] ; then 142 | if [ -x "$JAVA_HOME/jre/sh/java" ] ; then 143 | # IBM's JDK on AIX uses strange locations for the executables 144 | JAVACMD="$JAVA_HOME/jre/sh/java" 145 | else 146 | JAVACMD="$JAVA_HOME/bin/java" 147 | fi 148 | else 149 | JAVACMD="`which java`" 150 | fi 151 | fi 152 | 153 | if [ ! -x "$JAVACMD" ] ; then 154 | echo "Error: JAVA_HOME is not defined correctly." >&2 155 | echo " We cannot execute $JAVACMD" >&2 156 | exit 1 157 | fi 158 | 159 | if [ -z "$JAVA_HOME" ] ; then 160 | echo "Warning: JAVA_HOME environment variable is not set." 161 | fi 162 | 163 | CLASSWORLDS_LAUNCHER=org.codehaus.plexus.classworlds.launcher.Launcher 164 | 165 | # traverses directory structure from process work directory to filesystem root 166 | # first directory with .mvn subdirectory is considered project base directory 167 | find_maven_basedir() { 168 | 169 | if [ -z "$1" ] 170 | then 171 | echo "Path not specified to find_maven_basedir" 172 | return 1 173 | fi 174 | 175 | basedir="$1" 176 | wdir="$1" 177 | while [ "$wdir" != '/' ] ; do 178 | if [ -d "$wdir"/.mvn ] ; then 179 | basedir=$wdir 180 | break 181 | fi 182 | # workaround for JBEAP-8937 (on Solaris 10/Sparc) 183 | if [ -d "${wdir}" ]; then 184 | wdir=`cd "$wdir/.."; pwd` 185 | fi 186 | # end of workaround 187 | done 188 | echo "${basedir}" 189 | } 190 | 191 | # concatenates all lines of a file 192 | concat_lines() { 193 | if [ -f "$1" ]; then 194 | echo "$(tr -s '\n' ' ' < "$1")" 195 | fi 196 | } 197 | 198 | BASE_DIR=`find_maven_basedir "$(pwd)"` 199 | if [ -z "$BASE_DIR" ]; then 200 | exit 1; 201 | fi 202 | 203 | ########################################################################################## 204 | # Extension to allow automatically downloading the maven-wrapper.jar from Maven-central 205 | # This allows using the maven wrapper in projects that prohibit checking in binary data. 206 | ########################################################################################## 207 | if [ -r "$BASE_DIR/.mvn/wrapper/maven-wrapper.jar" ]; then 208 | if [ "$MVNW_VERBOSE" = true ]; then 209 | echo "Found .mvn/wrapper/maven-wrapper.jar" 210 | fi 211 | else 212 | if [ "$MVNW_VERBOSE" = true ]; then 213 | echo "Couldn't find .mvn/wrapper/maven-wrapper.jar, downloading it ..." 214 | fi 215 | jarUrl="https://repo.maven.apache.org/maven2/io/takari/maven-wrapper/0.4.2/maven-wrapper-0.4.2.jar" 216 | while IFS="=" read key value; do 217 | case "$key" in (wrapperUrl) jarUrl="$value"; break ;; 218 | esac 219 | done < "$BASE_DIR/.mvn/wrapper/maven-wrapper.properties" 220 | if [ "$MVNW_VERBOSE" = true ]; then 221 | echo "Downloading from: $jarUrl" 222 | fi 223 | wrapperJarPath="$BASE_DIR/.mvn/wrapper/maven-wrapper.jar" 224 | 225 | if command -v wget > /dev/null; then 226 | if [ "$MVNW_VERBOSE" = true ]; then 227 | echo "Found wget ... using wget" 228 | fi 229 | wget "$jarUrl" -O "$wrapperJarPath" 230 | elif command -v curl > /dev/null; then 231 | if [ "$MVNW_VERBOSE" = true ]; then 232 | echo "Found curl ... using curl" 233 | fi 234 | curl -o "$wrapperJarPath" "$jarUrl" 235 | else 236 | if [ "$MVNW_VERBOSE" = true ]; then 237 | echo "Falling back to using Java to download" 238 | fi 239 | javaClass="$BASE_DIR/.mvn/wrapper/MavenWrapperDownloader.java" 240 | if [ -e "$javaClass" ]; then 241 | if [ ! -e "$BASE_DIR/.mvn/wrapper/MavenWrapperDownloader.class" ]; then 242 | if [ "$MVNW_VERBOSE" = true ]; then 243 | echo " - Compiling MavenWrapperDownloader.java ..." 244 | fi 245 | # Compiling the Java class 246 | ("$JAVA_HOME/bin/javac" "$javaClass") 247 | fi 248 | if [ -e "$BASE_DIR/.mvn/wrapper/MavenWrapperDownloader.class" ]; then 249 | # Running the downloader 250 | if [ "$MVNW_VERBOSE" = true ]; then 251 | echo " - Running MavenWrapperDownloader.java ..." 252 | fi 253 | ("$JAVA_HOME/bin/java" -cp .mvn/wrapper MavenWrapperDownloader "$MAVEN_PROJECTBASEDIR") 254 | fi 255 | fi 256 | fi 257 | fi 258 | ########################################################################################## 259 | # End of extension 260 | ########################################################################################## 261 | 262 | export MAVEN_PROJECTBASEDIR=${MAVEN_BASEDIR:-"$BASE_DIR"} 263 | if [ "$MVNW_VERBOSE" = true ]; then 264 | echo $MAVEN_PROJECTBASEDIR 265 | fi 266 | MAVEN_OPTS="$(concat_lines "$MAVEN_PROJECTBASEDIR/.mvn/jvm.config") $MAVEN_OPTS" 267 | 268 | # For Cygwin, switch paths to Windows format before running java 269 | if $cygwin; then 270 | [ -n "$M2_HOME" ] && 271 | M2_HOME=`cygpath --path --windows "$M2_HOME"` 272 | [ -n "$JAVA_HOME" ] && 273 | JAVA_HOME=`cygpath --path --windows "$JAVA_HOME"` 274 | [ -n "$CLASSPATH" ] && 275 | CLASSPATH=`cygpath --path --windows "$CLASSPATH"` 276 | [ -n "$MAVEN_PROJECTBASEDIR" ] && 277 | MAVEN_PROJECTBASEDIR=`cygpath --path --windows "$MAVEN_PROJECTBASEDIR"` 278 | fi 279 | 280 | WRAPPER_LAUNCHER=org.apache.maven.wrapper.MavenWrapperMain 281 | 282 | exec "$JAVACMD" \ 283 | $MAVEN_OPTS \ 284 | -classpath "$MAVEN_PROJECTBASEDIR/.mvn/wrapper/maven-wrapper.jar" \ 285 | "-Dmaven.home=${M2_HOME}" "-Dmaven.multiModuleProjectDirectory=${MAVEN_PROJECTBASEDIR}" \ 286 | ${WRAPPER_LAUNCHER} $MAVEN_CONFIG "$@" 287 | -------------------------------------------------------------------------------- /bin/mvnw: -------------------------------------------------------------------------------- 1 | #!/bin/sh 2 | # ---------------------------------------------------------------------------- 3 | # Licensed to the Apache Software Foundation (ASF) under one 4 | # or more contributor license agreements. See the NOTICE file 5 | # distributed with this work for additional information 6 | # regarding copyright ownership. The ASF licenses this file 7 | # to you under the Apache License, Version 2.0 (the 8 | # "License"); you may not use this file except in compliance 9 | # with the License. You may obtain a copy of the License at 10 | # 11 | # https://www.apache.org/licenses/LICENSE-2.0 12 | # 13 | # Unless required by applicable law or agreed to in writing, 14 | # software distributed under the License is distributed on an 15 | # "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY 16 | # KIND, either express or implied. See the License for the 17 | # specific language governing permissions and limitations 18 | # under the License. 19 | # ---------------------------------------------------------------------------- 20 | 21 | # ---------------------------------------------------------------------------- 22 | # Maven2 Start Up Batch script 23 | # 24 | # Required ENV vars: 25 | # ------------------ 26 | # JAVA_HOME - location of a JDK home dir 27 | # 28 | # Optional ENV vars 29 | # ----------------- 30 | # M2_HOME - location of maven2's installed home dir 31 | # MAVEN_OPTS - parameters passed to the Java VM when running Maven 32 | # e.g. to debug Maven itself, use 33 | # set MAVEN_OPTS=-Xdebug -Xrunjdwp:transport=dt_socket,server=y,suspend=y,address=8000 34 | # MAVEN_SKIP_RC - flag to disable loading of mavenrc files 35 | # ---------------------------------------------------------------------------- 36 | 37 | if [ -z "$MAVEN_SKIP_RC" ] ; then 38 | 39 | if [ -f /etc/mavenrc ] ; then 40 | . /etc/mavenrc 41 | fi 42 | 43 | if [ -f "$HOME/.mavenrc" ] ; then 44 | . "$HOME/.mavenrc" 45 | fi 46 | 47 | fi 48 | 49 | # OS specific support. $var _must_ be set to either true or false. 50 | cygwin=false; 51 | darwin=false; 52 | mingw=false 53 | case "`uname`" in 54 | CYGWIN*) cygwin=true ;; 55 | MINGW*) mingw=true;; 56 | Darwin*) darwin=true 57 | # Use /usr/libexec/java_home if available, otherwise fall back to /Library/Java/Home 58 | # See https://developer.apple.com/library/mac/qa/qa1170/_index.html 59 | if [ -z "$JAVA_HOME" ]; then 60 | if [ -x "/usr/libexec/java_home" ]; then 61 | export JAVA_HOME="`/usr/libexec/java_home`" 62 | else 63 | export JAVA_HOME="/Library/Java/Home" 64 | fi 65 | fi 66 | ;; 67 | esac 68 | 69 | if [ -z "$JAVA_HOME" ] ; then 70 | if [ -r /etc/gentoo-release ] ; then 71 | JAVA_HOME=`java-config --jre-home` 72 | fi 73 | fi 74 | 75 | if [ -z "$M2_HOME" ] ; then 76 | ## resolve links - $0 may be a link to maven's home 77 | PRG="$0" 78 | 79 | # need this for relative symlinks 80 | while [ -h "$PRG" ] ; do 81 | ls=`ls -ld "$PRG"` 82 | link=`expr "$ls" : '.*-> \(.*\)$'` 83 | if expr "$link" : '/.*' > /dev/null; then 84 | PRG="$link" 85 | else 86 | PRG="`dirname "$PRG"`/$link" 87 | fi 88 | done 89 | 90 | saveddir=`pwd` 91 | 92 | M2_HOME=`dirname "$PRG"`/.. 93 | 94 | # make it fully qualified 95 | M2_HOME=`cd "$M2_HOME" && pwd` 96 | 97 | cd "$saveddir" 98 | # echo Using m2 at $M2_HOME 99 | fi 100 | 101 | # For Cygwin, ensure paths are in UNIX format before anything is touched 102 | if $cygwin ; then 103 | [ -n "$M2_HOME" ] && 104 | M2_HOME=`cygpath --unix "$M2_HOME"` 105 | [ -n "$JAVA_HOME" ] && 106 | JAVA_HOME=`cygpath --unix "$JAVA_HOME"` 107 | [ -n "$CLASSPATH" ] && 108 | CLASSPATH=`cygpath --path --unix "$CLASSPATH"` 109 | fi 110 | 111 | # For Mingw, ensure paths are in UNIX format before anything is touched 112 | if $mingw ; then 113 | [ -n "$M2_HOME" ] && 114 | M2_HOME="`(cd "$M2_HOME"; pwd)`" 115 | [ -n "$JAVA_HOME" ] && 116 | JAVA_HOME="`(cd "$JAVA_HOME"; pwd)`" 117 | # TODO classpath? 118 | fi 119 | 120 | if [ -z "$JAVA_HOME" ]; then 121 | javaExecutable="`which javac`" 122 | if [ -n "$javaExecutable" ] && ! [ "`expr \"$javaExecutable\" : '\([^ ]*\)'`" = "no" ]; then 123 | # readlink(1) is not available as standard on Solaris 10. 124 | readLink=`which readlink` 125 | if [ ! `expr "$readLink" : '\([^ ]*\)'` = "no" ]; then 126 | if $darwin ; then 127 | javaHome="`dirname \"$javaExecutable\"`" 128 | javaExecutable="`cd \"$javaHome\" && pwd -P`/javac" 129 | else 130 | javaExecutable="`readlink -f \"$javaExecutable\"`" 131 | fi 132 | javaHome="`dirname \"$javaExecutable\"`" 133 | javaHome=`expr "$javaHome" : '\(.*\)/bin'` 134 | JAVA_HOME="$javaHome" 135 | export JAVA_HOME 136 | fi 137 | fi 138 | fi 139 | 140 | if [ -z "$JAVACMD" ] ; then 141 | if [ -n "$JAVA_HOME" ] ; then 142 | if [ -x "$JAVA_HOME/jre/sh/java" ] ; then 143 | # IBM's JDK on AIX uses strange locations for the executables 144 | JAVACMD="$JAVA_HOME/jre/sh/java" 145 | else 146 | JAVACMD="$JAVA_HOME/bin/java" 147 | fi 148 | else 149 | JAVACMD="`which java`" 150 | fi 151 | fi 152 | 153 | if [ ! -x "$JAVACMD" ] ; then 154 | echo "Error: JAVA_HOME is not defined correctly." >&2 155 | echo " We cannot execute $JAVACMD" >&2 156 | exit 1 157 | fi 158 | 159 | if [ -z "$JAVA_HOME" ] ; then 160 | echo "Warning: JAVA_HOME environment variable is not set." 161 | fi 162 | 163 | CLASSWORLDS_LAUNCHER=org.codehaus.plexus.classworlds.launcher.Launcher 164 | 165 | # traverses directory structure from process work directory to filesystem root 166 | # first directory with .mvn subdirectory is considered project base directory 167 | find_maven_basedir() { 168 | 169 | if [ -z "$1" ] 170 | then 171 | echo "Path not specified to find_maven_basedir" 172 | return 1 173 | fi 174 | 175 | basedir="$1" 176 | wdir="$1" 177 | while [ "$wdir" != '/' ] ; do 178 | if [ -d "$wdir"/.mvn ] ; then 179 | basedir=$wdir 180 | break 181 | fi 182 | # workaround for JBEAP-8937 (on Solaris 10/Sparc) 183 | if [ -d "${wdir}" ]; then 184 | wdir=`cd "$wdir/.."; pwd` 185 | fi 186 | # end of workaround 187 | done 188 | echo "${basedir}" 189 | } 190 | 191 | # concatenates all lines of a file 192 | concat_lines() { 193 | if [ -f "$1" ]; then 194 | echo "$(tr -s '\n' ' ' < "$1")" 195 | fi 196 | } 197 | 198 | BASE_DIR=`find_maven_basedir "$(pwd)"` 199 | if [ -z "$BASE_DIR" ]; then 200 | exit 1; 201 | fi 202 | 203 | ########################################################################################## 204 | # Extension to allow automatically downloading the maven-wrapper.jar from Maven-central 205 | # This allows using the maven wrapper in projects that prohibit checking in binary data. 206 | ########################################################################################## 207 | if [ -r "$BASE_DIR/.mvn/wrapper/maven-wrapper.jar" ]; then 208 | if [ "$MVNW_VERBOSE" = true ]; then 209 | echo "Found .mvn/wrapper/maven-wrapper.jar" 210 | fi 211 | else 212 | if [ "$MVNW_VERBOSE" = true ]; then 213 | echo "Couldn't find .mvn/wrapper/maven-wrapper.jar, downloading it ..." 214 | fi 215 | jarUrl="https://repo.maven.apache.org/maven2/io/takari/maven-wrapper/0.4.2/maven-wrapper-0.4.2.jar" 216 | while IFS="=" read key value; do 217 | case "$key" in (wrapperUrl) jarUrl="$value"; break ;; 218 | esac 219 | done < "$BASE_DIR/.mvn/wrapper/maven-wrapper.properties" 220 | if [ "$MVNW_VERBOSE" = true ]; then 221 | echo "Downloading from: $jarUrl" 222 | fi 223 | wrapperJarPath="$BASE_DIR/.mvn/wrapper/maven-wrapper.jar" 224 | 225 | if command -v wget > /dev/null; then 226 | if [ "$MVNW_VERBOSE" = true ]; then 227 | echo "Found wget ... using wget" 228 | fi 229 | wget "$jarUrl" -O "$wrapperJarPath" 230 | elif command -v curl > /dev/null; then 231 | if [ "$MVNW_VERBOSE" = true ]; then 232 | echo "Found curl ... using curl" 233 | fi 234 | curl -o "$wrapperJarPath" "$jarUrl" 235 | else 236 | if [ "$MVNW_VERBOSE" = true ]; then 237 | echo "Falling back to using Java to download" 238 | fi 239 | javaClass="$BASE_DIR/.mvn/wrapper/MavenWrapperDownloader.java" 240 | if [ -e "$javaClass" ]; then 241 | if [ ! -e "$BASE_DIR/.mvn/wrapper/MavenWrapperDownloader.class" ]; then 242 | if [ "$MVNW_VERBOSE" = true ]; then 243 | echo " - Compiling MavenWrapperDownloader.java ..." 244 | fi 245 | # Compiling the Java class 246 | ("$JAVA_HOME/bin/javac" "$javaClass") 247 | fi 248 | if [ -e "$BASE_DIR/.mvn/wrapper/MavenWrapperDownloader.class" ]; then 249 | # Running the downloader 250 | if [ "$MVNW_VERBOSE" = true ]; then 251 | echo " - Running MavenWrapperDownloader.java ..." 252 | fi 253 | ("$JAVA_HOME/bin/java" -cp .mvn/wrapper MavenWrapperDownloader "$MAVEN_PROJECTBASEDIR") 254 | fi 255 | fi 256 | fi 257 | fi 258 | ########################################################################################## 259 | # End of extension 260 | ########################################################################################## 261 | 262 | export MAVEN_PROJECTBASEDIR=${MAVEN_BASEDIR:-"$BASE_DIR"} 263 | if [ "$MVNW_VERBOSE" = true ]; then 264 | echo $MAVEN_PROJECTBASEDIR 265 | fi 266 | MAVEN_OPTS="$(concat_lines "$MAVEN_PROJECTBASEDIR/.mvn/jvm.config") $MAVEN_OPTS" 267 | 268 | # For Cygwin, switch paths to Windows format before running java 269 | if $cygwin; then 270 | [ -n "$M2_HOME" ] && 271 | M2_HOME=`cygpath --path --windows "$M2_HOME"` 272 | [ -n "$JAVA_HOME" ] && 273 | JAVA_HOME=`cygpath --path --windows "$JAVA_HOME"` 274 | [ -n "$CLASSPATH" ] && 275 | CLASSPATH=`cygpath --path --windows "$CLASSPATH"` 276 | [ -n "$MAVEN_PROJECTBASEDIR" ] && 277 | MAVEN_PROJECTBASEDIR=`cygpath --path --windows "$MAVEN_PROJECTBASEDIR"` 278 | fi 279 | 280 | WRAPPER_LAUNCHER=org.apache.maven.wrapper.MavenWrapperMain 281 | 282 | exec "$JAVACMD" \ 283 | $MAVEN_OPTS \ 284 | -classpath "$MAVEN_PROJECTBASEDIR/.mvn/wrapper/maven-wrapper.jar" \ 285 | "-Dmaven.home=${M2_HOME}" "-Dmaven.multiModuleProjectDirectory=${MAVEN_PROJECTBASEDIR}" \ 286 | ${WRAPPER_LAUNCHER} $MAVEN_CONFIG "$@" 287 | --------------------------------------------------------------------------------